Plugins: Misc.

DHCP server Detection (Linux)

ISC DHCP 4.1.0 to 4.1-ESV-R15 / 4.2.0 to 4.2.8 / 4.3.0 to 4.3.6 DoS vulnerability

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2018 CPU)

Oracle Java SE Multiple Vulnerabilities (January 2018 CPU) (Unix)

Oracle Identity Manager Multiple Vulnerabilities (January 2018 CPU)

Oracle E-Business Multiple Vulnerabilities (January 2018 CPU)

Oracle VM VirtualBox 5.1.x < 5.1.32 / 5.2.x < 5.2.6 (January 2018 CPU)

VMware vCenter Server 5.5.x < 5.5U3g / 6.0.x < 6.0U3d / 6.5.x < 6.5U1e Hypervisor-Assisted Guest Remediation (VMSA-2018-0004) (Spectre)

ESXi 5.5 / 6.0 / 6.5 / Hypervisor-Assisted Guest Remediation for Speculative Execution (VMSA-2018-0004) (Spectre) (remote check)

NVIDIA Linux GPU Display Driver 384.x < 384.111 / 390.x < 390.12 Multiple Vulnerabilities (Meltdown)(Spectre)

Xen vcpu Destruction Handling Memory Exhaustion Guest-to-Host DoS (XSA-253)

Western Digital MyCloud Web Interface Detection

Citrix XenServer Multiple Vulnerabilities (CTX231390) (Meltdown)(Spectre)

ESXi 6.5 < Build 6765664 Heap Buffer Overflow (VMSA-2017-0021) (remote check)

Apple TV < 11.2 Multiple Vulnerabilities

VMware vSphere Data Protection 5.x / 6.0.x < 6.0.7 / 6.1.x < 6.1.6 Multiple Vulnerabilities (VMSA-2018-0001

Asterisk 13.x < 13.18.5 / 14.x < 14.7.5 / 15.x < 15.1.5 / 13.13 < 13.18-cert2 Crash in PJSIP (AST-2017-014)

VMware vCenter Server Appliance 6.5 < 6.5 U1d Local Privilege Escalation (VMSA-2017-0021)

Xen Function M2P Entry Access Handling Guest-to-Host DoS (XSA-251)

Xen Shadow Mode Page Use Reference Counting Error Handling Guest-to-Host DoS (XSA-250)

Xen Function Page Use Shadow Mode Reference Counting Improper Overflow Check Guest-to-Host DoS (XSA-249)

Xen PV Guests Internally Used Pages Access Handling Guest-to-Host Privilege Escalation (XSA-248)

ESXi 5.5 / 6.0 / 6.5 / Multiple Vulnerabilities (VMSA-2017-0021) (VMSA-2018-0002) (Spectre) (remote check)

RSA Authentication Agent for Web for Apache Installed

RSA Authentication Agent for Web for Apache 8.x < 8.0.1 Build 618 Filter Bypass

IBM Domino IMAP EXAMINE Command Handling RCE (EMPHASISMINE)

Asterisk 13.x < 13.18.4 / 14.x < 14.7.4 / 15.x < 15.1.4 / 13.13 < 13.13-cert9 Improper Memory Storage Remote DoS (AST-2017-012)

GitHub Enterprise Detection

Citrix XenServer Guest-to-host DoS (CTX230624)

ESET NOD32 Antivirus for Linux Installed

AXIS Web Interface Detection

Huawei HG532e Home Gateway Command Injection

Citrix XenServer Multiple Vulnerabilities (CTX230138)

Zabbix Server 'active checks' Command Injection

Asterisk 13.x < 13.18.3 / 14.x < 14.7.3 / 15.x < 15.1.3 / 13.13 < 13.13-cert8 Memory Exhaustion Remote DoS (AST-2017-013)

Apache Struts 2.5.x < 2.5.14.1 Json-lib JSON Parsing Unspecified DoS

macOS 10.13 Authentication Bypass Remote Check (CVE-2017-13872)

Brother Printer Debut Embedded HTTP Server Detection

Xen Hypervisor Guest-to-Host Privilege Escalation (XSA-247)

Xen Hypervisor Infinite Loop Guest-to-Host DoS (XSA-246)

Samba Version

MacOS root Authentication Bypass Direct check over VNC Server (unauthenticated)

4.5.x < 4.5.15 / 4.6.x < 4.6.11 / 4.7.x < 4.7.3 Multiple Vulnerabilities

HP OfficeJet Printers RCE (HPSBPI03569)

HP LaserJet Printers RCE (HPSBPI03569)

Oracle Tuxedo Installation Detection

Oracle Tuxedo Jolt Server Multiple Vulnerabilities (CVE-2017-10269)

Vanilla Forums Detection

Asterisk 13.x < 13.18.1 / 14.x < 14.7.1 / 15.x < 15.1.1 / 13.13 < 13.13-cert7 Multiple Vulnerabilities (AST-2017-009 - AST-2017-011)

VMware vCenter Server 5.5.x < 5.5u3f / 6.0.x < 6.0u3c / 6.5.x < 6.5u1 Multiple Vulnerabilities (VMSA-2017-0017)

Tenable SecurityCenter PHP < 5.6.32 PCRE DoS

Tenable SecurityCenter OpenSSL 1.0.2 < 1.0.2m Multiple Vulnerabilities

Splunk Non-root Configuration Local Privilege Escalation

SSH Compression Error Checking

IBM Storwize 1.5.x / 1.6.x < 1.6.2.0 RC4 Initial Keystream Bias Vulnerability (CVE-2017-1375)

Apple TV < 11.1 Multiple Vulnerabilities

HP ArcSight ESM 6.x < 6.9.1.2377.4 / 6.11.0.2385.1 Multiple Vulnerabilities

Tenable SecurityCenter 5.5.0 <= 5.5.2 SQLi (TNS-2017-13)

Oracle Identity Manager Default Account Local Check (CVE-2017-10151)

ONVIF Stream URI

Xen Hypervisor Pin Count / Page Reference Grant Table Code Guest-to-Host Memory Corruption (XSA-236)

ArubaOS Multiple Vulnerabilities (2017-006)

Citrix XenServer Pin Count / Page Reference Grant Table Code Guest-to-Host Memory Corruption Vulnerability (CTX229057)

AOST Network Video Recorder Detection

Vacron NVR Web Interface Detection

AVTech Web Interface Detection

Oracle Enterprise Manager Ops Center Remote Code Execution (October 2017 CPU)

Oracle E-Business Multiple Vulnerabilities (October 2017 CPU)

Asterisk 11.x < 11.25.3 / 13.x < 13.17.2 / 14.x < 14.6.2 / 11.6 < 11.6-cert18 / 13.13 < 13.13-cert6 RTP/RTCP information leak (AST-2017-008)

Oracle Secure Global Desktop Web Services Component Remote Authentication Bypass (October 2017 CPU)

Xen Hypervisor New CPU Interrupt Descriptor Table (IDT) Copy Handling Guest-to-Host Privilege Escalation (XSA-244)

Xen Hypervisor Translated Guest Self-linear Shadow Mapping Handling Guest-to-Host Privilege Escalation (XSA-243)

Xen Hypervisor Page Type Reference Handling Memory Exhaustion Guest-to-Host DoS (XSA-242)

Xen Hypervisor TLB Flush Request Handling Race Condition System Memory Access Guest-to-Host Privilege Escalation (XSA-241)

Xen Hypervisor Pagetable De-typing Recursion Handling Guest-to-Host DoS (XSA-240)

Xen Hypervisor I/O Intercept Code Hypervisor Stack Guest-to-Host Information Disclosure (XSA-239)

Xen Hypervisor Multiple Functions DMOP Handling Guest-to-Host DoS (XSA-238)

Xen Hypervisor PCI MSI Interrupt Setup Multiple Guest-to-Host Privilege Escalation (XSA-237)

NetApp Clustered Data ONTAP < 8.2.5 / 8.3.x < 8.3.2P12 (NTAP-20170831-0003)

Oracle Java SE Multiple Vulnerabilities (October 2017 CPU) (Unix)

Oracle WebLogic Server Multiple Vulnerabilities (October 2017 CPU)

Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)

Oracle VM VirtualBox 5.1.x < 5.1.30 (October 2017 CPU)

NUUO NVR Web Interface Detection

Citrix XenServer Multiple Vulnerabilities (CTX228867)

NetApp Clustered Data ONTAP 8.x < 8.3.2P12 (NTAP-20170831-0002)

Ubiquiti Networks UniFi < 3.9.3.7537 (KRACK)

NetApp Clustered Data ONTAP 8.x < 8.3.2P8 / 9.x < 9.0P2 (NTAP-20170814-0001)

ONVIF Get Device User List

ONVIF Camera Snapshot

ONVIF Device Services

ONVIF Device Information

MikroTik RouterOS < 6.39.3 / 6.40.4 / 6.41rc (KRACK)

ArubaOS WPA2 Key Reinstallation Vulnerabilities (KRACK)

H3C / HPE Intelligent Management Center PLAT < 7.3 E0506P03 Multiple RCE

H3C / HPE Intelligent Management Center PLAT <= 7.3 E0501P01 Multiple Vulnerabilities

OpenSSH < 7.6

Xen Hypervisor Memory Leak on Boot (XSA-235)

H3C / HPE Intelligent Management Center PLAT < 7.3 E0506P03 Multiple Vulnerabilities

Oracle WebLogic Server Multiple Vulnerabilities (CVE-2017-9805)

Samba 4.4.x < 4.4.16 / 4.5.x < 4.5.14 / 4.6.x < 4.6.8 Multiple Vulnerabilities

Grandstream Phone Web Interface Detection

Grandstream Phone Web Interface Default Credentials

NVIDIA Linux GPU Display Driver 375.x < 375.88 / 384.x < 384.90 Multiple Vulnerabilities

Apple TV < 11 Multiple Vulnerabilities

Citrix XenServer Multiple Vulnerabilities (CTX227185)

VMware vCenter Server 6.5.x < 6.5u1 H5 Client Stored XSS (VMSA-2017-0015)

ESXi 6.5 < Build 5969300 Multiple Vulnerabilities (VMSA-2017-0015) (remote check)

ESXi 5.5 < Build 6480267 RPC NULL Pointer Dereference Vulnerability (VMSA-2017-0015) (remote check)

Xen Hypervisor Multiple Vulnerabilities (XSA-231 - XSA-234)

Apple TV <= 7.2.2 Bluetooth Remote Code Execution (BlueBorne)

Tenable SecurityCenter PHP < 5.6.31 Multiple Vulnerabilities (TNS-2017-12

D-Link DIR Router Web Interface Detection

Pulse Policy Secure Cross-Site Request Forgery (SA40793)

Pulse Connect Secure Cross-Site Request Forgery (SA40793)

Western Digital TV Web Interface Detection

Apache Struts 2.1.x >= 2.1.2 / 2.2.x / 2.3.x < 2.3.34 / 2.5.x < 2.5.13 Multiple Vulnerabilities

Asterisk 11.x < 11.25.2 / 11.6 < 11.6-cert17 / 13.x < 13.17.1 / 14.x < 14.6.1 / 13.13 < 13.13-cert5 Multiple Vulnerabilities (AST-2017-005 - AST-2017-007)

Novell NetIQ Identity Manager Installed (Linux)

Novell NetIQ Access Manager Installed (Linux)

Xen Hypervisor Function Error Condition Handling Lock Release Failure Guest-to-Host DoS (XSA-235)

NVIDIA Linux GPU Display Driver 375.8x < 375.82 / 375.7x < 375.74 / 384.x < 384.59 Multiple Vulnerabilities

NetApp ONTAP Device Detection

NetApp ONTAP 8.x.x < 8.2.5 (NTAP-20170815-0002)

ESXi 6.0 < Build 5485776 Multiple Vulnerabilities (VMSA-2017-0015) (remote check)

Xen Hypervisor Multiple Vulnerabilities (XSA-226 - XSA-230)

Citrix XenServer Multiple Vulnerabilities (CTX225941)

H3C / HPE Intelligent Management Center PLAT < 7.3 E0506 Multiple Vulnerabilities

McAfee Web Gateway 7.6.x < 7.6.2.15 / 7.7.x < 7.7.2.3 Multiple Vulnerabilities (SB10205)

HP Data Protector 8.x < 8.17 / 9.x < 9.09 Multiple Vulnerabilities (HPSBGN03732)

VMware vCenter Server Appliance 6.5 < 6.5 U1 Multiple Vulnerabilities (VMSA-2017-0013)

Oracle Primavera Unifier Detection

Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Detection

Oracle Primavera Gateway Detection

Oracle E-Business Multiple Vulnerabilities (July 2017 CPU) (SWEET32)

Oracle Java SE Multiple Vulnerabilities (July 2017 CPU) (Unix)

Oracle Enterprise Manager Grid Control Multiple Vulnerabilities (July 2017 CPU) (httpoxy)

Oracle VM VirtualBox 5.1.x < 5.1.24 (July 2017 CPU)

Oracle WebLogic Server Multiple Vulnerabilities (July 2017 CPU)

Linksys Smart Wi-Fi Web Interface Detection

AXIS gSOAP Message Handling RCE (ACV-116267) (Devil's Ivy)

Samba 4.4.x < 4.4.15 / 4.5.x < 4.5.12 / 4.6.x < 4.6.6 KDC-REP Service Name Validation (Orpheus' Lyre)

Apache Struts 2.3.x < 2.3.33 / 2.5.x < 2.5.12 Multiple DoS

Belkin Web Interface Detection

Citrix XenServer Multiple Vulnerabilities (CTX224740)

Poppler < 0.56.0 Multiple Vulnerabilities

RHEL / CentOS 6.x (64-bit) Malicious Kernel Module Detection (OutlawCountry)

HooToo TripMate Web Interface Detection

EMC Avamar ADS / AVE 7.2.x < 7.2.1 Hotfix 277897 / 7.3.x < 7.3.1 Hotfix 276676 / 7.4.x < 7.4.1 Hotfix 279294 Multiple Vulnerabilities (ESA-2017-054)

Tenable SecurityCenter PHP < 5.6.30 Multiple Vulnerabilities (TNS-2017-04)

Tenable SecurityCenter PHP < 5.6.27 Multiple Vulnerabilities

Tenable SecurityCenter PHP < 5.6.26 Multiple Vulnerabilities

Tenable SecurityCenter PHP < 5.6.25 Multiple Vulnerabilities (TNS-2016-09)

Tenable SecurityCenter OpenSSL 1.0.2 < 1.0.2k Multiple Vulnerabilities (TNS-2017-04)

Tenable SecurityCenter OpenSSL 1.0.1 < 1.0.1u Multiple Vulnerabilities (SWEET32)

Tenable SecurityCenter Apache 2.4.x < 2.4.25 Multiple Vulnerabilities (TNS-2017-04) (httpoxy)

HPE UCMDB 'UploadFileOnUIServerServlet' Servlet Path Handling RCE (HPESBGN03758)

HPE Intelligent Management Center dbman Opcode 10008 Command Injection

H3C / HPE Intelligent Management Center PLAT < 7.3 E0504P04 Multiple Vulnerabilities

IBM BigFix Compliance 1.9.70 Multiple Vulnerabilities

IBM Spectrum Protect Client Windows Registry Credentials Disclosure

VMware vSphere Data Protection 5.5.x / 5.8.x / 6.0.x < 6.0.5 / 6.1.x < 6.1.4 Multiple Vulnerabilities (VMSA-2017-0010

IBM Domino 8.5.x / 9.0.x < 9.0.1 Fix Pack 8 TLS Server Diffie-Hellman Key Validation MitM

Redis Server Unprotected by Password Authentication

Oracle GoldenGate Manager < 12.2.0.1.1 OBEY Command ggserr.log File Handling RCE

Trend Micro SafeSync for Enterprise (SSFE) Detection

Trend Micro SafeSync for Enterprise Authentication Bypass

Zabbix Unsupported Version Detection

suidperl Privilege Escalation (PROCSUID)

Mount iSCSI Targets with 'None' Authentication

Samba 3.5.x < 4.4 / 4.4.x < 4.4.14 / 4.5.x < 4.5.10 / 4.6.x < 4.6.4 Shared Library RCE

Asterisk 13.13 < 13.13-cert4 / 13.x < 13.15.1 / 14.x < 14.4.1 Multiple Vulnerabilities (AST-2017-002 - AST-2017-004)

AlienVault OSSIM get_fqdn() RCE

NETGEAR Web Interface Detection

NVIDIA Linux GPU Display Driver 375.x < 375.66 / 381.x < 381.22 Multiple Vulnerabilities

Apple TV < 10.2.1 Multiple Vulnerabilities

Atlassian HipChat Server 1.0 < 2.2.4 Image Upload RCE

IBM Spectrum Protect Client Instrumentation Log Credentials Disclosure

Xen Hypervisor Multiple Vulnerabilities (XSA-213 - XSA-215)

Citrix XenServer Multiple Vulnerabilities (CTX223291)

Unitrends Backup Detection

Cisco Security Manager Java Object Deserialization RCE (CSCux34671)

Cisco Prime LAN Management Solution Java Object Deserialization RCE (CSCux34647)

Oracle Secure Global Desktop Multiple Vulnerabilities (April 2017 CPU) (SWEET32)

MikroTik RouterOS HTTP Server Arbitrary Write RCE

H3C / HPE Intelligent Management Center accessMgrServlet Java Object Deserialization RCE

H3C / HPE Intelligent Management Center RMI Java Object Deserialization RCE

IBM Domino IMAP EXAMINE Command Handling RCE (EMPHASISMINE)

Apache Struts Detection for Linux/UNIX

Oracle Enterprise Manager Grid Control Multiple Vulnerabilities (April 2017 CPU) (SWEET32)

Oracle Java SE Multiple Vulnerabilities (April 2017 CPU) (Unix)

Comelit Intercom Master Detection

Comelit Intercom Detection

Comelit Camera Detection

Comelit Actuator Detection

Oracle WebLogic Server Multiple Vulnerabilities (April 2017 CPU)

Oracle VM VirtualBox 5.0.x < 5.0.38 / 5.1.x < 5.1.20 (April 2017 CPU)

Oracle E-Business Multiple Vulnerabilities (April 2017 CPU)

VMware vCenter Server 6.0.x < 6.0u3b / 6.5.x < 6.5c BlazeDS AMF3 RCE (VMSA-2017-0007)

VMware vCenter Server Appliance BlazeDS AMF3 RCE (VMSA-2017-0007)

Oracle Identity Manager Rules Engine Vulnerability (April 2017 CPU)

Xen Hypervisor XENMEM_exchange Memory Disclosure (XSA-212)

Xen Hypervisor xenstored Write Saturation DoS (XSA-206)

Citrix XenServer multiple vulnerabilities (CTX222565)

Asterisk 13.13 < 13.13-cert3 / 13.x < 13.14.1 / 14.x < 14.3.1 CDR user Field RCE (AST-2017-001)

HP Intelligent Management Center SOM Module filePath Information Disclosure

OpenSSH < 7.5

Apple TV < 10.2 Multiple Vulnerabilities

Sophos Web Appliance < 4.3.1.2 Multiple Vulnerabilities

Oracle VM VirtualBox 5.0.x < 5.0.34 / 5.1.x < 5.1.16 Shared Folder Implementation Information Disclosure

Samba 4.4.x < 4.4.12 / 4.5.x < 4.5.7 / 4.6.x < 4.6.1 Path Renaming Symlink Local File Disclosure

Firebird SQL Server for Linux Installed (credentialed check)

ESXi 6.5 < Build 5224529 Multiple Vulnerabilities (VMSA-2017-0006) (remote check)

ESXi 6.0 U1 < Build 5251621 / 6.0 U2 < Build 5251623 / 6.0 U3 < Build 5224934 Multiple Vulnerabilities (VMSA-2017-0006) (remote check)

ESXi 5.5 < Build 5230635 Multiple Vulnerabilities (VMSA-2017-0006) (remote check)

HPE Intelligent Management Center 7.2 E0403P06 Multiple Vulnerabilities

IBM Domino Unsupported Version Detection

OS Identification and Installed Software Enumeration over SSH v2 (Using New SSH Library)

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p10 Multiple Vulnerabilities

Citrix XenServer QEMU Display Geometry Resize Handling Guest-to-Host Code Execution (CTX221578)

Tenable Log Correlation Engine (LCE) < 4.8.1 Multiple Vulnerabilities

Network Time Protocol (NTP) Mode 6 Scanner

Tenable SecurityCenter 5.x < 5.4.3 Multiple Vulnerabilities (TNS-2017-04) (httpoxy)

Apache Struts 2.3.5 - 2.3.31 / 2.5.x < 2.5.10.1 Jakarta Multipart Parser RCE

Tenable SecurityCenter 5.4.x <= 5.4.3 PHP Object Deserialization Remote File Deletion (TNS-2017-05)

Citrix XenServer Multiple Vulnerabilities (CTX220771)

Cisco Identity Services Engine (ISE) Unsupported Version Detection

Xen Guest Destruction Memory Leak DoS (XSA-207)

NVIDIA Linux GPU Display Driver 304.x < 304.135 / 340.x < 340.102 / 361.x < 361.119 / 375.x < 375.39 / 378.x < 378.13 Multiple Vulnerabilities

Trend Micro Control Manager Detection (uncredentialed)

McAfee ePolicy Orchestrator Agent < 5.0.4.449 Log Viewer DoS

McAfee ePolicy Orchestrator Agent Remote Log Detection

IBM TSM for Virtual Environments 7.1.3.0 < 7.1.6.4 Windows Domain Credential Disclosure

IBM DataPower Gateway Detection

IBM DataPower Gateway < 7.5.2.2 Default Admin Password Security Bypass

Server Message Block (SMB) Protocol Version 1 Enabled (uncredentialed check)

EMC Documentum D2 4.5.x and 4.6.x < 4.7 Multiple Vulnerabilities (ESA-2016-167)

Xen SYSCALL singlestep Handling Privilege Escalation (XSA-204)

Xen Intel VMX hvmemul_vmfunc() NULL Pointer Dereference DoS (XSA-203)

Xen Asynchronous Modification EFLAGS.IF Clearing DoS (XSA-202)

Xen CMPXCHG8B Emulation Information Disclosure (XSA-200)

EMC Avamar ADS / AVE 7.3.0.x < 7.3.0 Hotfix 268253 / 7.3.1.x < 7.3.1 Hotfix 272363 Incorrect File Ownership Local Privilege Escalation (ESA-2016-146)

Citrix XenServer Multiple Vulnerabilities (CTX220112)

Apple TV < 10.1.1 Multiple Vulnerabilities

Tenable SecurityCenter < 5.4.1 Multiple Vulnerabilities (TNS-2016-19)

Host Asset Information

Citrix XenServer Multiple Vulnerabilities (CTX219378)

Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2017 CPU)

HP Version Control Repository Manager for Linux < 7.6.0 Multiple Vulnerabilities

Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)

Oracle Java SE Multiple Vulnerabilities (January 2017 CPU) (Unix) (SWEET32)

IBM BigFix Platform 9.x < 9.1.9 / 9.2.x < 9.2.9 / 9.5.x < 9.5.4 Multiple Vulnerabilities

Oracle WebLogic Server Java Object RMI Connect-Back Deserialization RCE (January 2017 CPU)

Oracle VM VirtualBox 5.0.x < 5.0.32 / 5.1.x < 5.1.14 Multiple Vulnerabilities (January 2017 CPU)

Oracle E-Business Multiple Vulnerabilities (January 2017 CPU)

HP Operations Manager Installed (Linux)

NetIQ Sentinel Java Object Deserialization RCE

IBM Spectrum Protect Client VM Backup INCLUDE.VMTSMVSS Option Credentials Disclosure

Zyxel D1000 CWMP Get Default Password

VMware vSphere Data Protection Private SSH Key Authentication Bypass (VMSA-2016-0024)

Tenable Passive Vulnerability Scanner 5.x < 5.2.0 Multiple Vulnerabilities (SWEET32)

OpenSSH < 7.4 Multiple Vulnerabilities

Samba 4.3.x < 4.3.13 / 4.4.x < 4.4.8 / 4.5.x < 4.5.3 Multiple Vulnerabilities

Symantec Endpoint Protection Small Business Edition Unsupported Version Detection

NVIDIA Linux GPU Display Driver 304.x < 304.134 / 340.x < 340.101 / 361.x < 361.107 / 375.x < 375.26 GPU Interrupt Saturation DoS

Asterisk SIP Channel Authentication Bypass (AST-2016-009)

Asterisk Opus Codec DoS (AST-2016-008)

EMC Avamar ADS / AVE Installed (credentialed check)

EMC Avamar ADS / AVE < 7.3.0 Hotfix 263301 PostgreSQL Command Local Privilege Escalation (ESA-2016-111)

IBM Domino 8.5.x < 8.5.3 Fix Pack 6 Interim Fix 15 / 9.0.x < 9.0.1 Fix Pack 7 Interim Fix 1 Multiple Vulnerabilities

McAfee VirusScan Enterprise for Linux <= 2.0.3 Multiple vulnerabilities (SB10181)

CA Unified Infrastructure Management < 8.4 SP2 Multiple Information Disclosure Vulnerabilities (CA20161109-01)

Citrix XenServer QEMU ioport Array Overflow Guest-to-Host Privilege Escalation (CTX219136)

Xen Multiple Vulnerabilities (XSA-191 - XSA-198)

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p9 Multiple Vulnerabilities

Citrix XenServer Multiple Vulnerabilities (CTX218775)

VMware vCenter Server 5.5.x < 5.5u3e / 6.0.x < 6.0u2a Multiple XXE Vulnerabilities (VMSA-2016-0022)

Network Time Protocol Daemon (ntpd) read_mru_list() Remote DoS

VMware NSX Edge Information Disclosure (VMSA-2016-0007)

Juniper JUNOSe IPv6 Packet Handling Line Card Reset Remote DoS (JSA10767)

NVIDIA Linux GPU Display Driver 304.x < 304.132 / 340.x < 340.98 / 361.93.x < 361.93.03 / 367.x < 367.55 / 370.x < 370.28 Multiple Vulnerabilities

Oracle Secure Global Desktop Unspecified Vulnerability (October 2016 CPU)

Apple TV < 10.0.1 Multiple Vulnerabilities

Oracle WebLogic Server Multiple Vulnerabilities (October 2016 CPU)

Oracle Enterprise Manager Cloud Control Security Framework Vulnerability (October 2016 CPU)

Oracle VM VirtualBox 5.0.x < 5.0.28 / 5.1.x < 5.1.8 Multiple Vulnerabilities (October 2016 CPU)

Oracle E-Business Multiple Vulnerabilities (October 2016 CPU)

Xen x86 CR0.TS and CR0.EM Honoring Cross-task Register State Information Disclosure (XSA-190)

Oracle Java SE Multiple Vulnerabilities (October 2016 CPU) (Unix)

Apple TV < 9.1 Multiple Vulnerabilities

UPnP WFA Device Detection

UPnP Internet Gateway Device (IGD) Port Mapping Listing

UPnP API Listing

UPnP File Share Detection

MiCasaVerde VeraLite UPnP RCE

ClamAV < 0.99.2 Multiple libclamav DoS

Xen Multiple Vulnerabilities (XSA-186, XSA-187)

Apple TV < 10 Multiple Vulnerabilities

McAfee Security Information and Event Management 9.5.x / 9.6.x < 9.6.0.3 ESM Authentication Bypass (KB87744)

EMC Documentum D2 4.5.x < 4.5 P15 / 4.6.x < 4.6 P03 r_object_id Handling Unauthenticated Document Disclosure (ESA-2016-108)

BMC Server Automation rscd Service Authentication Bypass RCE

Symantec Protection Engine 7.0.x < 7.0.5 HF02 / 7.5.x < 7.5.5 HF01 / 7.8.x < 7.8.0 HF03 Multiple DoS (SYM16-015) (Linux)

Dropbear SSH Server < 2016.72 Multiple Vulnerabilities

Citrix XenServer Multiple Vulnerabilities (CTX216071)

Oracle JDeveloper Multiple RCE (July 2016 CPU)

Asterisk chan_sip Overlap Dialing Feature DoS (AST-2016-007)

Asterisk 13.10.x < 13.11.1 ACK Handling Unrecognized Username NULL Pointer Dereference DoS (AST-2016-006)

Moxa MiiNePort Blank Default Telnet Password

Symantec Protection Engine Detection

Symantec Protection Engine 7.0.x < 7.0.5 HF01 / 7.5.x < 7.5.3 HF03 / 7.8.x < 7.8.0 HF01 Multiple Vulnerabilities (SYM16-010) (*nix check)

Tenable SecurityCenter < 5.3.0 Multiple Vulnerabilities (TNS-2016-04)

MiniUPnP DNS Rebind Vulnerability

Portable SDK for UPnP Devices (libupnp) HTTP Arbitrary File Write

OpenSSH < 7.3 Multiple Vulnerabilities

VMware vRealize Automation 7.0.x < 7.1 Multiple Vulnerabilities (VMSA-2016-0013)

IBM TSM for Virtual Environments 6.4.x < 6.4.3.4 / 7.1.x < 7.1.6.0 RCE

Oracle Access Manager Webgate Information Disclosure (July 2016 CPU)

H3C / HPE Intelligent Management Center Java Object Deserialization RCE

Pgbouncer 1.6 Invalid User Authentication Bypass

ESXi 5.0 / 5.1 / 5.5 / 6.0 Multiple Vulnerabilities (VMSA-2016-0010) (remote check)

VMware vCenter Server 6.0.x < 6.0u2 Unspecified HTTP Header Injection (VMSA-2016-0010)

VMware vRealize Log Insight Web UI Detection

IBM Domino 9.0.x < 9.0.1 Fix Pack 6 Multiple Vulnerabilities

IBM Domino 8.5.x < 8.5.3 Fix Pack 6 Interim Fix 13 Multiple Vulnerabilities

Citrix XenServer Multiple Vulnerabilities (CTX214954) (Bunker Buster)

Xen Privilege Escalation (XSA-182) (Bunker Buster)

Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (July 2016 CPU)

Tenable SecurityCenter < 5.4.0 Multiple Vulnerabilities (TNS-2016-12)

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2016 CPU)

Oracle Java SE Multiple Vulnerabilities (July 2016 CPU) (Unix)

Apple TV < 9.2.2 Multiple Vulnerabilities

Sonatype Nexus Repository Manager Java Object Deserialization RCE

Samba 4.x < 4.2.14 / 4.3.x < 4.3.11 / 4.4.x < 4.4.5 SMB2/3 Client Connection Required Signing Downgrade

Oracle E-Business Multiple Vulnerabilities (July 2016 CPU)

Oracle WebLogic Server Multiple Vulnerabilities (July 2016 CPU)

Oracle VM VirtualBox < 5.0.26 Core Subcomponent DoS (July 2016 CPU)

Oracle VM VirtualBox < 5.0.22 Multiple Vulnerabilities (July 2016 CPU)

SolarWinds Virtualization Manager Java Object Deserialization RCE

Citrix Studio < 7.6.1000 Insecure Access Policy Configuration (CTX213045)

McAfee Email Gateway Detection

McAfee Email Gateway File Attachment Name NULL Character Handling Filter Bypass (SB10161)

IBM Tivoli Storage Manager Client Symlink Cross-User Information Disclosure

BMC Server Automation RSCD Agent Weak ACL NSH Arbitrary Command Execution

Citrix XenServer Active Directory Authentication Incorrect Host Management Security Bypass (CTX213549, CTX213769)

VMware vCloud Director Installed

VMware vCloud Director 5.5.x < 5.5.6.1 / 5.6.x < 5.6.5.1 / 8.0.x < 8.0.1.1 JMX Deserialization RCE (VMSA-2016-0005)

PowerFolder Java Object Deserialization RCE

Tenable SecurityCenter < 5.3.2 Multiple Vulnerabilities (TNS-2016-09)

QlikView Server Web UI Detection

IBM Storwize SSL/TLS RC4 Stream Cipher Key Invariance (Bar Mitzvah)

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p8 / 4.3.x < 4.3.93 Multiple Vulnerabilities

McAfee VirusScan Enterprise for Linux Unsupported Version Detection

Red Hat JBoss Operations Network Java Object Deserialization RCE

BlackBerry Enterprise Service (BES) Management Console Detection

SolarWinds Server & Application Monitor (SAM) Alert Handling Local Privilege Escalation

VMware vSphere Replication Oracle JRE JMX Deserialization RCE (VMSA-2016-0005)

Citrix XenServer Multiple Vulnerabilities (CTX212736)

VMware VRealize Operations Manager 6.x Oracle JRE JMX Deserialization RCE (VMSA-2016-0005)

VMware vCenter Server 5.0.x < 5.0u3e / 5.1.x < 5.1u3b / 5.5.x < 5.5u3 (Linux) / 5.5.x < 5.5u3b (Windows) / 6.0.x < 6.0.0b JMX Deserialization RCE (VMSA-2016-0005)

Apple TV < 9.2.1 Multiple Vulnerabilities

SSL/TLS Service Requires Client Certificate

BMC BladeLogic Server Automation RSCD Agent Detection

BMC Server Automation RSCD Agent Weak ACL XML-RPC Arbitrary Command Execution

BMC Server Automation RSCD Agent ACL Bypass

Asterisk PJProject TCP Connection DoS (AST-2016-005)

HP Data Protector Hard-coded Cryptographic Key (HPSBGN03580)

OpenSSH 6.8p1 - 7.x < 7.1p2 ssh_packet_read_poll2() Packet Handling DoS

Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p7 Multiple Vulnerabilities

Oracle Application Testing Suite Detection

Oracle Application Testing Suite Java Object Deserialization RCE (April 2016 CPU)

Asterisk REGISTER Request Contact URI Handling DoS (AST-2016-004)

HP Data Protector 7.0x < 7.03 build 108 / 8.1x < 8.15 / 9.0x < 9.06 Multiple Vulnerabilities (HPSBGN03580) (Bar Mitzvah)

VMware vRealize Automation Web UI Detection

NetIQ Sentinel < 7.4.1 Multiple Vulnerabilities

VMware vCloud Director 5.5.x < 5.5.6 Client Integration Plugin Session Hijacking (VMSA-2016-0004)

VMware vCenter Server 5.5.x < 5.5u3d / 6.0.x < 6.0u2 Client Integration Plugin Session Hijacking (VMSA-2016-0004)

SSH SCP Protocol Detection

Tenable Log Correlation Engine (LCE) < 4.8.0 Libxml2 DoS

Oracle VM VirtualBox < 4.3.36 / 5.0.18 Multiple Vulnerabilities (April 2016 CPU)

Oracle WebLogic Server Multiple Vulnerabilities (April 2016 CPU)

Oracle Java SE Multiple Vulnerabilities (April 2016 CPU) (Unix)

NetIQ Sentinel Java Object Deserialization RCE

Oracle E-Business Multiple Vulnerabilities (April 2016 CPU)

Samba 3.x < 4.2.10 / 4.2.x < 4.2.10 / 4.3.x < 4.3.7 / 4.4.x < 4.4.1 Multiple Vulnerabilities (Badlock)

Tenable SecurityCenter 5.2.x / 5.3.x < 5.3.1 Multiple Vulnerabilities (TNS-2016-07)

McAfee Security Information and Event Management 9.3.x < 9.3.2.19 / 9.4.x < 9.4.2.9 / 9.5.x < 9.5.0.8 Authentication Bypass (SB10137)

EMC Documentum D2 < 4.6 Insufficient ACL Remote Object Manipulation (ESA-2016-034)

VMware vRealize Business Web UI Detection

SSH Weak Algorithms Supported

Apple TV < 7.2.1 Multiple Vulnerabilities

HP ArcSight ESM < 5.6 / 6.0 / 6.5c SP1 P2 / 6.8c Multiple Vulnerabilities

Apple TV < 9.2 Multiple Vulnerabilities

HP ArcSight ESM < 6.8c Information Disclosure

Apache Jetspeed Detection

HP Network Automation Detection

Samba 3.2.x < 4.1.23 / 4.2.x < 4.2.9 / 4.3.x < 4.3.6 / 4.4.0 < 4.4.0rc4 Multiple Vulnerabilities

Dropbear SSH Server < 2016.72 xauth Command Injection

OpenSSH < 7.2p2 X11Forwarding xauth Command Injection

OpenSSH < 7.2 Untrusted X11 Forwarding Fallback Security Bypass

Tenable SecurityCenter 5.0.2 Audit File XSS (TNS-2015-12)

HP OfficeJet Printers Unspecified Information Disclosure (HPSBPI03546)

HP LaserJet Printers Unspecified Information Disclosure (HPSBPI03546)

Symantec Encryption Management Server Remote Administrator Enumeration

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0013) (remote check)

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0012) (remote check)

VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0010) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0009) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0008) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0007) (remote check)

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0004) (remote check)

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0003) (remote check)

VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0001) (remote check)

VMware ESX / ESXi Arbitrary File Modification (VMSA-2013-0016) (remote check)

VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0015) (remote check)

VMware ESX / ESXi Guest OS Local Privilege Escalation (VMSA-2013-0014) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check)

VMware ESX / ESXi NFC Traffic Handling DoS (VMSA-2013-0011) (remote check)

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0009) (remote check)

VMware ESX sudo Package Multiple Vulnerabilities (VMSA-2013-0007) (remote check)

VMware ESX / ESXi libxml2 RCE (VMSA-2013-0004) (remote check)

VMware ESX / ESXi NFC and Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0003) (remote check)

VMware ESX / ESXi VMCI Privilege Escalation (VMSA-2013-0002) (remote check)

VMware ESX / ESXi Authentication Service and Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0001) (remote check)

VMware ESX WebWorks Help Multiple XSS (VMSA-2009-0017) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0016) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0014) (remote check)

VMware ESX Multiple Vulnerabilities (VMSA-2009-0009) (remote check)

VMware ESX Multiple Vulnerabilities (VMSA-2009-0008) (remote check)

VMware ESX / ESXi Descheduled Time Accounting DoS (VMSA-2009-0007) (remote check)

VMware ESX Multiple Vulnerabilities (VMSA-2009-0004) (remote check)

VMware ESX Service Console Multiple Vulnerabilities (VMSA-2012-0008) (remote check)

VMware ESX / ESXi Tools Folder Incorrect ACL Privilege Escalation (VMSA-2012-0007) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0006) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0005) (BEAST) (remote check)

VMware ESX / ESXi Service Console and Third-Party Libraries Multiple Vulnerabilities (VMSA-2012-0001) (remote check)

SSL DROWN Attack Vulnerability (Decrypting RSA with Obsolete and Weakened eNcryption)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0016) (remote check)

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2012-0013) (remote check)

VMware ESX / ESXi libxml2 Multiple Vulnerabilities (VMSA-2012-0012) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0011) (remote check)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0009) (remote check)

Tenable SecurityCenter PHP Character Handling (TNS-2015-09)

Novell ZENworks ChangePassword RPC XPath Injection

Nessus SQLite Multiple RCE

AVG Internet Security Out-of-Date

Shibboleth Identity Provider Installed (Linux)

ESXi 5.5 < Build 3568722 / 6.0 < Build 3568940 glibc DNS Resolver RCE (VMSA-2016-0002) (remote check)

Symantec Encryption Management Server 3.3.2 < 3.3.2 MP12 Multiple Vulnerabilities (SYM16-002)

HP ArcSight Logger < 6.1P1 Multiple Vulnerabilities

Tenable SecurityCenter OpenSSL ASN.1 Signature Verification Routine DoS (TNS-2016-01)

Lexmark Markvision Enterprise Java Object Deserialization RCE

Asterisk Multiple Vulnerabilities (AST-2016-001 - AST-2016-003) (BEAST)

FreeSWITCH Detection

FreeSWITCH < 1.4.26 / 1.6.x < 1.6.5 JSON Parser RCE

Symantec Endpoint Protection Installed (Unix Credentialed Check)

Apple TV < 9.1.1 Multiple Vulnerabilities

Host Unique Identifiers

Oracle WebLogic Portal Detection

Oracle WebLogic Portal Apache Commons File Upload (January 2016 CPU)

Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p6 Multiple Vulnerabilities

Oracle WebLogic Server Multiple Vulnerabilities (January 2016 CPU)

Oracle VM VirtualBox < 4.3.36 / 5.0.14 Multiple Vulnerabilities (January 2016 CPU)

Oracle VM VirtualBox < 4.0.36 / 4.1.44 / 4.2.36 / 4.3.34 / 5.0.10 Multiple Vulnerabilities (January 2016 CPU)

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2016 CPU) (Logjam)

Oracle Java SE Multiple Vulnerabilities (January 2016 CPU) (SLOTH) (Unix)

Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2016 CPU)

Oracle E-Business Multiple Vulnerabilities (January 2016 CPU)

McAfee ePolicy Orchestrator Agent Detection (Linux)

ESXi 6.0 < Build 3380124 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (remote check)

ESXi 5.5 < Build 3248547 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (remote check)

ESXi 5.1 < Build 3070626 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (remote check)

ESXi 5.0 < Build 3086167 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (remote check)

Fortinet FortiOS SSH Undocumented Interactive Login Vulnerability

IBM TSM for Virtual Environments 6.3.x < 6.3.2.5 / 6.4.x < 6.4.3.1 / 7.1.x < 7.1.4.0 RCE

IBM Tivoli Storage FlashCopy Manager for VMware 3.1.x < 3.1.1.3 / 3.2.x < 3.2.0.6 / 4.1.x < 4.1.4.0 Command Execution

rsync STARTTLS Command Support

IRC Daemon STARTTLS Command Support

Samba 4.2.x < 4.2.7 / 4.3.x < 4.3.3 Multiple Vulnerabilities

Samba 4.x < 4.1.22 Multiple Vulnerabilities

VMware vCenter / vRealize Orchestrator 4.2.x / 5.x / 6.x Java Object Deserialization RCE (VMSA-2015-0009)

VMware vCenter / vRealize Orchestrator Appliance 4.2.x / 5.x / 6.x Java Object Deserialization RCE (VMSA-2015-0009)

XMPP Cleartext Authentication

Subversion Cleartext Authentication

AMQP Cleartext Authentication

ACAP Cleartext Authentication

VMware ESXi Multiple Vulnerabilities (VMSA-2014-0012)

VMware ESX Multiple Bash Vulnerabilities (VMSA-2014-0010) (Shellshock)

VMware ESXi Multiple DoS (VMSA-2014-0008)

VMware ESXi Multiple OpenSSL Vulnerabilities (VMSA-2014-0006)

VMware ESXi Tools Guest OS Privilege Escalation (VMSA-2014-0005)

VMware ESXi Multiple OpenSSL Vulnerabilities (VMSA-2014-0004) (Heartbleed)

VMware ESX / ESXi vSphere Client RCE (VMSA-2014-0003)

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2014-0002)

VMware ESX / ESXi Multiple DoS (VMSA-2014-0001)

VMware vCenter Multiple Vulnerabilities (VMSA-2015-0008)

NVIDIA Graphics Driver NVAPI Support Layer Integer Overflow Privilege Escalation (Unix / Linux)

Citrix XenServer Multiple memory_exchange() Hypercall Error Handling DoS (CTX203451)

Xerox WorkCentre 77XX Multiple Vulnerabilities (XRX15R) (FREAK) (GHOST)

Xerox WorkCentre 4260 / 4265 Multiple Vulnerabilities (XRX15AV) (FREAK) (Logjam)

Xerox WorkCentre 6400 OpenSSL RSA Temporary Key Handling EXPORT_RSA Ciphers Downgrade MitM (XRX15AP) (FREAK)

Xerox WorkCentre 3025 / 3215 / 3225 OpenSSL Multiple Vulnerabilities (XRX15AM) (FREAK) (POODLE)

Xerox WorkCentre 3550 OpenSSL Multiple Vulnerabilities (XRX15AJ) (FREAK) (POODLE)

Xerox ColorQube 92XX Multiple OpenSSL Vulnerabilities (XRX15AD) (FREAK) (GHOST) (POODLE)

OpenNMS Java Object Deserialization RCE

TLS NPN Supported Protocol Enumeration

Oracle WebLogic Server Java Object Deserialization RCE (Local Check)

Citrix XenServer Multiple Infinite Loop Guest-to-Host DoS (CTX202583)

Nessus 5.x < 5.2.12 / 6.x < 6.4 Multiple OpenSSL Vulnerabilities

VMware ESXi 5.5 < Build 3029944 OpenSLP RCE (VMSA-2015-0007)

VMware ESXi 5.1 < Build 3021178 OpenSLP RCE (VMSA-2015-0007)

VMware ESXi 5.0 < Build 3021432 OpenSLP RCE (VMSA-2015-0007)

Xerox ColorQube 8570 / 8870 Multiple Vulnerabilities (XRX15OA)

Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p4 Multiple Vulnerabilities

Oracle Enterprise Manager Agent Installation Detection (credentialed check)

Oracle Enterprise Manager Agent Unspecified Vulnerabilities (October 2015 CPU)

Oracle VM VirtualBox < 4.0.34 / 4.1.42 / 4.2.34 / 4.3.32 / 5.0.8 Multiple Core DoS (October 2015 CPU)

Oracle VM VirtualBox < 4.0.30 / 4.1.38 / 4.2.30 / 4.3.26 / 5.0.0 Core DoS (October 2015 CPU)

Oracle JDeveloper Multiple Vulnerabilities (October 2015 CPU)

Oracle Java SE Multiple Vulnerabilities (October 2015 CPU) (Unix)

Oracle Identity Manager OIM Legacy UI Unspecified Vulnerability (October 2015 CPU)

Oracle E-Business Multiple Vulnerabilities (October 2015 CPU)

Oracle Access Manager Information Disclosure (October 2015 CPU)

Lexmark Printer config.html Administrator Authentication Bypass (FREAK)

HP ArcSight Logger < 6.1 Management Center XSS

SSH Diffie-Hellman Modulus <= 1024 Bits (Logjam)

IBM Tivoli Storage Manager for Virtual Environments Installed (Linux)

IBM Tivoli Storage FlashCopy Manager Installed (Linux)

IBM TSM for Virtual Environments 6.3.x < 6.3.2.5 / 6.4.x < 6.4.3.1 / 7.1.x < 7.1.3.0 XSS

IBM Tivoli Storage FlashCopy Manager for VMware 3.1.x < 3.1.1.3 / 3.2.x < 3.2.0.6 / 4.1.x < 4.1.3.0 XSS

VMware vCenter Multiple Vulnerabilities (VMSA-2015-0007)

VMware vCenter 6.0 LDAP Certificate Validation MitM Spoofing (VMSA-2015-0006)

VMware vCenter 5.5 LDAP Certificate Validation MitM Spoofing (VMSA-2015-0006)

OpenSSH MaxAuthTries Bypass

HP Universal Configuration Management Database Server (UCMDB) Local Information Disclosure (HPSBGN03504)

HP ArcSight Logger < 6.0 P2 Multiple Vulnerabilities

HP Version Control Repository Manager Linux Detection (credentialed check)

HP Version Control Repository Manager for Linux < 7.5.0 Multiple Vulnerabilities (HPSBMU03396) (FREAK)

IBM Storwize V7000 Unified ACL Security Bypass

OpenSSH 7.x < 7.1 PermitRootLogin Security Bypass

Citrix XenServer QEMU RTL8139 Guest Network Device Information Disclosure (CTX201717)

IBM Storwize V7000 Unified 1.3.x < 1.4.3.5 / 1.5.x < 1.5.0.4 Multiple Vulnerabilities (Shellshock)

HP Operations Manager i (OMi) Unspecified RCE

Tenable SecurityCenter Multiple PHP Vulnerabilities (TNS-2015-06)

Tenable SecurityCenter Alternative Certificate Validation Bypass Vulnerability (TNS-2015-08)

OpenSSH < 7.0 Multiple Vulnerabilities

Citrix XenServer QEMU IDE Buffer Overflow Code Execution (CTX201593)

Tenable SecurityCenter < 5.0.1 Multiple RCE (TNS-2015-10)

Oracle WebCenter Portal Multiple Vulnerabilities (July 2015 CPU)

Oracle JDeveloper ADF Faces DoS (July 2015 CPU)

Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (July 2015 CPU)

Juniper NSM < 2012.2R9 Apache HTTP Server Multiple Vulnerabilities (JSA10685) (credentialed check)

Juniper NSM < 2012.2R9 Apache HTTP Server Multiple Vulnerabilities (JSA10685)

Oracle Java SE Multiple Vulnerabilities (July 2015 CPU) (Unix) (Bar Mitzvah)

Oracle WebLogic Server Multiple Vulnerabilities (July 2015 CPU)

TLS ALPN Supported Protocol Enumeration

Oracle Access Manager Multiple Vulnerabilities (July 2015 CPU)

Oracle VM VirtualBox < 4.0.32 / 4.1.40 / 4.2.32 / 4.3.30 Core Unspecified Vulnerability (July 2015 CPU)

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2015 CPU)

Oracle E-Business Multiple Vulnerabilities (July 2015 CPU)

EMC Documentum D2 4.1 / 4.2.x < 4.2 P16 / 4.5.x < 4.5 P03 Multiple DQL Injection Vulnerabilities

OpenSSH < 6.9 Multiple Vulnerabilities

NVIDIA Graphics Driver Pointer Dereference Privilege Escalation (Unix / Linux)

EMC Documentum D2 4.1.x < 4.5 XSS (ESA-2015-109)

IBM Storwize 1.3.x < 1.4.3.4 / 1.5.x < 1.5.0.2 Multiple Vulnerabilities

Wind River VxWorks TCP Predictability Vulnerability

Network Time Protocol Daemon (ntpd) Information Disclosure

Patch Management: Red Hat Satellite 6 Report

Patch Management: Red Hat Satellite Get Installed Packages

EMC RSA Authentication Manager 8.x < 8.1 Patch 6 Unspecified URI Redirection

CUPS < 2.0.3 Multiple Vulnerabilities

McAfee Agent Unsupported Version Detection

SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)

ESXi 5.5 < Build 1623387 Multiple Vulnerabilities (remote check)

Citrix XenServer QEMU FDC Buffer Overflow RCE (CTX201078) (VENOM)

Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p2 Multiple Vulnerabilities

Websense TRITON Detection

SSL/TLS EXPORT_DHE <= 512-bit Export Cipher Suites Supported (Logjam)

EMC AutoStart < 5.5.0 HF4 ftAgent Remote Code Execution

ClamAV < 0.98.7 Multiple Vulnerabilities

Unix / Linux - Local Users Information : Passwords Never Expire

SSL Certificate Chain Contains Certificates Expiring Soon

HP Operations Orchestration Detection

ClusterLabs Pacemaker PCS Daemon Detection

ClusterLabs Pacemaker PCS Daemon Default Password

VMware vCenter Server Multiple Java Vulnerabilities (VMSA-2015-0003) (POODLE)

Realtek SDK miniigd SOAP Service RCE

Citrix XenServer Multiple Vulnerabilities (CTX200892)

IBM Domino 9.0.x < 9.0.1 Fix Pack 3 Interim Fix 2 GIF Code Execution

IBM Domino 8.5.x < 8.5.3 Fix Pack 6 Interim Fix 4 GIF Code Execution

HP Data Protector Multiple Vulnerabilities (HPSBMU03321 SSRT101677)

Juniper NSM < 2012.2R11 Multiple OpenSSL Vulnerabilities (JSA10679) (FREAK)

Asterisk TLS Certificate Common Name NULL Byte Vulnerability (AST-2015-003)

Oracle Enterprise Manager Cloud Control Unspecified Vulnerability (April 2015 CPU)

Oracle WebCenter Portal Unspecified Remote Vulnerabilities (April 2015 CPU)

ArcSight Enterprise Security Management (ESM) Installed

HP ArcSight ESM < 6.5c SP1 P1 / 6.8c Multiple Vulnerabilities

Oracle E-Business Multiple Vulnerabilities (April 2015 CPU)

Oracle WebLogic Server Multiple Vulnerabilities (April 2015 CPU) (POODLE)

Oracle Java SE Multiple Vulnerabilities (April 2015 CPU) (Unix) (FREAK)

VMware Workspace Portal Multiple Java Vulnerabilities (VMSA-2015-0003) (POODLE)

Apple TV < 7.2 Multiple Vulnerabilities

VMware vCenter Operations Manager Web UI Detection

VMware vCenter Operations Manager Installed (Linux)

VMware vCenter Operations Management Windows JRE Update 1.7.0_76-b13 (VMSA-2015-0003) (POODLE)

VMware vCenter Operations Management vApp JRE Update 1.7.0_76-b13 (VMSA-2015-0003) (POODLE)

VMware vCenter Operations Management Linux JRE Update 1.7.0_76-b13 (VMSA-2015-0003) (POODLE)

Samba 3.0.0 'SamrChangePassword' RCE

ArubaOS Remote Access Point Command Injection

Visualware MyConnection Server Web Default Credentials

Visualware MyConnection Server Remote Agent Default Password

McAfee Email Gateway Digest Token Reflected XSS (SB10099)

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p1 Multiple Vulnerabilities

HP ArcSight Logger < 6.0P1 Multiple Vulnerabilities

IBM Tivoli Storage Manager Client Installed (Linux)

IBM Tivoli Storage Manager Client DSO Local Privilege Escalation

Loxone Smart Home Miniserver Web Server Version Detection

Loxone Smart Home Miniserver < 6.3 Multiple Vulnerabilities

Apple TV < 7.1 Multiple Vulnerabilities (FREAK)

SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

EgoSecure EndPoint Service Installed

Tivoli Storage Manager Server Unsupported Product

Tivoli Storage Manager Server Unauthorized Backup File Displacement

Tivoli Storage Manager Server Unauthorized Access Vulnerability

Samba 3.5.x < 3.5.22 / 3.6.x < 3.6.25 / 4.0.x < 4.0.25 / 4.1.x < 4.1.17 TALLOC_FREE() RCE

EMC Documentum D2 < 4.1 P22 / 4.2 P11 Multiple Vulnerabilities (ESA-2015-010)

VMware vSphere Data Protection Certificate Validation (VMSA-2015-0002)

Asterisk libcURL HTTP Request Injection (AST-2015-002)

Asterisk chan_pjsip Incompatible Codecs DoS (AST-2015-001)

Symantec Encryption Management Server < 3.3.2 MP7 Multiple Vulnerabilities

ClamAV < 0.98.6 Multiple Vulnerabilities

VMware Security Updates for vCenter Server (VMSA-2015-0001) (POODLE)

Apple TV < 7.0.3 Multiple Vulnerabilities

ESXi 5.5 < Build 2352327 Multiple Vulnerabilities (remote check) (POODLE)

ESXi 5.1 < Build 1743201 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 1749766 Multiple Vulnerabilities (remote check)

Openswan < 2.6.37 Cryptographic Helper Use-After-Free Remote DoS

Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS

Oracle Forms and Reports Multiple Unspecified Vulnerabilities (January 2015 CPU)

Oracle Access Manager Multiple Vulnerabilities (January 2015 CPU)

Oracle Adaptive Access Manager Unspecified Remote Vulnerability (January 2015 CPU)

Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2015 CPU)

Oracle Enterprise Manager Cloud Control Installation Detection (credentialed check)

IBM Storwize Detection

Oracle E-Business Multiple Vulnerabilities (January 2015 CPU)

Samba 4.x < 4.0.24 / 4.1.16 UF_SERVER_TRUST_ACCOUNT AD DC Privilege Escalation

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2015 CPU) (POODLE)

Oracle WebLogic Server Multiple Vulnerabilities (January 2015 CPU)

Oracle Java SE Multiple Vulnerabilities (January 2015 CPU) (Unix) (POODLE)

MiniUPnP < 1.9 Multiple Vulnerabilities

Patch Management: Get Packages from Symantec Altiris

Lexmark MarkVision Enterprise ReportDownloadServlet Information Disclosure

IBM Tivoli Access Manager for e-Business < 6.0.0.31 / 6.1.0.12 / 6.1.1.8 or GSKit < 7.0.4.47 SSL/TLS Handshake Processing DoS

IBM Tivoli Access Manager for e-Business < 6.0.0.33 / 6.1.0.14 / 6.1.1.10 SSL Multiple Vulnerabilities

Informix Server GSKit 7.x < 7.0.4.50 / 8.0.50.x < 8.0.50.20 SSL CPU Utilization DoS

Informix Server GSKit 7.x <= 7.0.4.47 / 8.0.50.x <= 8.0.50.13 X.509 Certificate Chain DoS

Intel UEFI EFI S3 Resume Boot Path Script Privilege Escalation (INTEL-SA-00041)

IBM Network Security Protection XGS Remote Code Execution (swg21690823) (credentialed check)

Tenable SecurityCenter Multiple DoS (TNS-2014-11)

Lexmark MarkVision Enterprise < 2.1 Multiple Vulnerabilities

IBM Network Security Protection XGS WebUI Detection

SSL Custom CA Setup

Huawei Versatile Security / Storage Platform Version Detection

ESXi 5.1 < Build 2323231 glibc Library Multiple Vulnerabilities (remote check)

Asterisk 'res_http_websocket' Double-Free DoS (AST-2014-019)

VMware Security Updates for vCenter Server (VMSA-2014-0012)

VMware vCenter Server Appliance Unspecified XSS (VMSA-2014-0012)

ESXi 5.1 < Build 2323236 Third-Party Libraries Multiple Vulnerabilities (remote check) (BEAST)

CUPS Remote Command Execution via Shellshock

HPE Network Node Manager i (NNMi) Linux Detection (credentialed check)

Citrix XenServer Multiple Vulnerabilities (CTX200288)

Citrix CloudPlatform Detection

CUPS < 2.0.1 SSLv3 Legacy Encryption Vulnerability (POODLE)

Asterisk ConfBridge 'dialplan' Privilege Escalation (AST-2014-017)

Asterisk ConfBridge State Transitions DoS (AST-2014-014)

Asterisk PJSIP Multiple Vulnerabilities (AST-2014-013 / AST-2014-015 / AST-2014-016)

Asterisk Multiple Vulnerabilities (AST-2014-012 / AST-2014-018)

AFP Server Network Interface Enumeration

ClamAV < 0.98.5 Multiple Vulnerabilities

IBM Rational Software Architect Design Manager / Engineering Lifecycle Manager / Rhapsody Design Manager < 4.0.7 XSRF

Apple TV < 7.0.2 Multiple Vulnerabilities

McAfee Next Generation Firewall GNU Bash Code Injection (SB10085) (Shellshock)

HP Data Protector 'EXEC_INTEGUTIL' Arbitrary Command Execution

McAfee Web Gateway GNU Bash Code Injection (SB10085) (Shellshock)

McAfee Email Gateway GNU Bash Code Injection (SB10085) (Shellshock)

ARRIS Touchstone Cable Modem Detection

Oracle JDeveloper ADF Faces goButton XSS (October 2014 CPU)

Oracle JDeveloper Installation Detection

VMware vCenter Operations Management Bash Vulnerabilities (VMSA-2014-0010) (Shellshock)

Apple TV < 7.0.1 Multiple Vulnerabilities (POODLE)

HP LaserJet Printers Remote Unauthorized Access, DoS (HPSBPI03147)

VMware Workspace Portal Multiple Bash Shell Vulnerabilities (VMSA-2014-0010) (Shellshock)

VMware NSX Bash Environment Variable Command Injection (VMSA-2014-0010) (Shellshock)

VMware vSphere Replication Bash Environment Variable Command Injection Vulnerability (VMSA-2014-0010) (Shellshock)

Cisco UCS Director Default Credentials (SSH)

Oracle Adaptive Access Manager Server Arbitrary Code Execution (October 2014 CPU)

Oracle Adaptive Access Manager Server Detection

Oracle Access Manager (October 2014 CPU)

VMware vCenter Orchestrator 5.5.x < 5.5.2 DoS (VMSA-2014-0007)

VMware vCenter Orchestrator Appliance 5.5.x < 5.5.2 DoS (VMSA-2014-0007)

OpenSSH SSHFP Record Verification Weakness

HP Operations Manager / Operations Agent < 11.13 XSS (HPSBMU03126)

Asterisk Information Disclosure (AST-2014-011) (POODLE)

Oracle Enterprise Manager Content Management Sub-Component Unspecified Vulnerability (October 2014 CPU)

Oracle E-Business Multiple Vulnerabilities (October 2014 CPU)

Oracle Secure Global Desktop Multiple DoS Vulnerabilities (October 2014 CPU)

Oracle Identity Manager (October 2014 CPU

Oracle WebLogic Server Multiple Vulnerabilities (October 2014 CPU)

HP Operations Manager 9.10 / 9.11 / 9.20 Multiple RCE

ArubaOS 6.3.1.11 / 6.4.2.1 SSH Authentication Bypass

ArubaOS Detection

VMware vCenter Server Appliance Bash Remote Code Execution (VMSA-2014-0010) (Shellshock)

Oracle Java SE Multiple Vulnerabilities (October 2014 CPU) (Unix)

F5 Networks rsync RCE

Juniper JunosE Malformed ICMP Remote DoS (JSA10651)

HP Printers Security Bypass (HPSBPI03107)

ESXi 5.5 < Build 1980513 glibc Library Multiple Vulnerabilities (remote check)

Xen Hypervisor Detection

Oracle Application Express Listener Remote Information Disclosure Vulnerability (July 2012 CPU)

Oracle Application Express (APEX) / REST Data Services Listener Installation Detection

VMware vSphere Replication Multiple OpenSSL Vulnerabilities (VMSA-2014-0006)

Patch Management: Symantec Altiris Report

Patch Management: Missing Updates from Symantec Altiris

Patch Management: Symantec Altiris Computer Info Initialization

VMware NSX Edge Unspecified Information Disclosure (VMSA-2014-0009)

VMware NSX Installed

Asterisk ReceiveFax Dialplan Application Remote DoS (AST-2014-010)

Asterisk PJSIP Channel Driver DoS (AST-2014-009)

Apple TV < 7 Multiple Vulnerabilities

IBM Domino 9.x < 9.0.1 Fix Pack 2 Multiple Vulnerabilities (uncredentialed check)

VMware Security Updates for vCenter Server (VMSA-2014-0008)

Junos Pulse Secure Access IVE OS Clickjacking (JSA10647)

Junos Pulse Secure Access IVE OS XSS (JSA10646)

Junos Pulse Secure Access IVE / UAC OS XSS (JSA10645)

Oracle WebCenter Portal Unspecified Remote Information Disclosure (July 2014 CPU)

IBM Rational Software Architect Design Manager and Rhapsody Design Manager < 4.0.6000 Unspecified Vulnerability

IBM Rational Software Architect Design Manager and Rhapsody Design Manager < 4.0.7 Unspecified Vulnerability

McAfee Web Gateway Information Disclosure (SB10080)

IBM Tivoli Storage Manager Client Metadata Local File Access Information Disclosure

Juniper NSM < 2012.2R9 Multiple Java and Apache Vulnerabilities (JSA10642)

EMC Documentum D2 Privilege Escalation (ESA-2014-067)

EMC Documentum D2 Detection (credentialed)

Tenable Log Correlation Engine Unix / Linux Clients Unsupported Version Detection

Tenable Log Correlation Engine (LCE) Unix / Linux Client Installed (credentialed check)

OpenSSL 'ChangeCipherSpec' MiTM Vulnerability

CUPS 1.7.x < 1.7.5 'get_file' Function Symlink Handling Info Disclosure

IBM Installation Manager Detection (Linux)

IBM Installed Software Enumeration

IBM GCM16 / GCM32 Global Console Manager KVM Switch Firmware Version < 1.20.20.23447 Multiple Vulnerabilities

IBM GCM16 / GCM32 Global Console Manager KVM Switch Firmware Version < 1.20.0.22575 Remote Code Execution

IBM GCM16 / GCM32 Global Console Manager KVM Switch Detection

VMware vCenter Support Assistant Multiple Vulnerabilities (VMSA-2014-0006)

Samba 4.x < 4.0.21 / 4.1.11 nmbd Remote Code Execution

F5 Networks BIG-IP Detection

Oracle Traffic Director Multiple Vulnerabilities (July 2014 CPU)

CUPS 1.7.x < 1.7.4 'get_file' Function Symlink Handling Info Disclosure

HP StoreVirtual 4000 and StoreVirtual VSA Software < 11.5 Multiple Vulnerabilities

Patch Management: Dell KACE K1000 Report

Patch Management: Missing updates from Dell KACE K1000

Patch Management: Dell KACE K1000 Computer Info Initialization

Huawei Versatile Routing Platform Version Detection

Bitdefender GravityZone Detection

WebTitan Default Credentials (ssh)

Citrix XenServer Multiple Vulnerabilities (CTX140984)

Citrix XenServer Detection

IBM Storwize V7000 Unified Service Account Unspecified Local Privilege Escalation

Oracle BI Publisher Installation Detection

HP Intelligent Management Center Branch Intelligent Management Module 7.x < 7.0-E0201P02 Multiple Vulnerabilities

HP Intelligent Management Center 7.x < 7.0-E0202P03 Multiple Vulnerabilities

HP Data Protector 8.x Arbitrary Command Execution (HPSBMU03072)

Oracle E-Business (July 2014 CPU)

McAfee VirusScan Enterprise for Linux Multiple OpenSSL Vulnerabilities (SB10075)

McAfee Email Gateway OpenSSL Multiple Vulnerabilities (SB10075)

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2014 CPU)

Oracle Java SE Multiple Vulnerabilities (July 2014 CPU) (Unix)

Oracle WebLogic Server Multiple Vulnerabilities (July 2014 CPU)

HP BladeSystem c-Class Onboard Administrator 4.11 / 4.20 Heartbeat Information Disclosure (Heartbleed)

VMware vCenter Server Appliance Multiple Vulnerabilities (VMSA-2014-0006)

Fortinet OpenSSL Multiple Vulnerabilities

Ipswitch IMail Server 11.x / 12.x < 12.4.1.15 Multiple Vulnerabilities (Heartbleed)

Ipswitch IMail Server 11.x / 12.x < 12.3 Information Disclosure

VMware Security Updates for vCenter Server (VMSA-2014-0006)

Kerio Connect 8.2.x < 8.2.4 Heartbeat Information Disclosure (Heartbleed)

VMware vCenter Operations Management Suite Multiple Vulnerabilities (VMSA-2014-0007)

ESXi 5.0 < Build 1918656 OpenSSL Library Multiple Vulnerabilities (remote check)

Symantec Data Insight Management Console Detection

VMware vCenter Operations Manager Multiple OpenSSL Vulnerabilities (VMSA-2014-0006)

IBM Storwize Authenticated Information Disclosure

HP Onboard Administrator < 4.22 Remote Information Disclosure

HylaFAX+ 5.2.4 < 5.5.4 Remote Buffer Overflow

HylaFAX Installed

Samba Unsupported Version Detection

Junos Pulse Secure Access IVE / UAC OS Weak Cipher Information Disclosure (JSA10628)

Citrix NetScaler nsconfigd Remote DoS (CTX139017)

ESXi 5.1 < Build 1900470 OpenSSL Library Multiple Vulnerabilities (remote check)

Samba 3.6.x < 3.6.24 / 4.0.x < 4.0.19 / 4.1.x < 4.1.9 Multiple Vulnerabilities

Countertack Sentinel User Interface Detection

Countertack Sentinel Detection

McAfee Web Gateway Multiple OpenSSL Vulnerabilities (SB10075)

McAfee ePolicy Orchestrator Multiple OpenSSL Vulnerabilities (SB10075)

Junos Pulse Secure Access IVE / UAC OS Multiple OpenSSL Vulnerabilities (JSA10629)

McAfee Web Gateway < 7.3.2.2 DoS (SB10052)

Intel Multiple Products Crafted UEFI Variable Handling Security Bypass

Asterisk PJSIP Channel Driver Multiple DoS Vulnerabilities (AST-2014-005 / AST-2014-008)

Asterisk HTTP Session Handling DoS (AST-2014-007)

Asterisk Manager Interface MixMonitor Privilege Escalation (AST-2014-006)

Brocade Fabric OS Default Credentials

ESXi 5.5 < Build 1881737 OpenSSL Library Multiple Vulnerabilities (remote check)

EMC Documentum D2 Privilege Escalation (ESA-2014-045)

OpenSSL 'ChangeCipherSpec' MiTM Potential Vulnerability

Samba 3.5.x / 3.6.x < 3.6.25 / 4.1.x < 4.1.8 Multiple Vulnerabilities

Samba 4.x < 4.0.18 Multiple Vulnerabilities

IBM Domino 9.0 < 9.0.0 Interim Fix 4 iNotes Buffer Overflow

IBM Domino 8.5.x < 8.5.3 Fix Pack 5 Interim Fix 1 iNotes Buffer Overflow

Oracle Event Processing CVE-2014-2424 Unspecified Vulnerability (April 2014 CPU)

Oracle Event Processing Installation Detection (credentialed check)

Juniper NSM Remote Code Execution (JSA10625)

IBM Domino 8.5.3 FP6 / 9.0.1 < 8.5.3 FP6 IF2 / 9.0.1 FP1 iNotes XSS

ClamAV Unsupported Version Detection

McAfee VirusScan Enterprise for Linux Detection and Status

Citrix NetScaler Multiple Vulnerabilities (CTX140651)

Citrix NetScaler Gateway XSS (CTX140291)

IBM Domino 9.x < 9.0.1 Fix Pack 1 Multiple Vulnerabilities (uncredentialed check)

IBM Domino 8.5.x < 8.5.3 Fix Pack 6 Interim Fix 2 NX Memory Protection Disabled

IBM Inventory Scout < 2.2.0.19 Symlink Vulnerability

F5 Networks BIG-IQ Detection

ESXi 5.5 < Build 1746974 / 5.5 Update 1 < Build 1746018 OpenSSL Library Multiple Vulnerabilities (remote check) (Heartbleed)

Oracle WebLogic Server Security Subcomponent Unspecified Vulnerability (April 2014 CPU)

Oracle WebLogic Server Detection

VMware Horizon Workspace 1.8 < 1.8.1 OpenSSL Library Multiple Vulnerabilities (VMSA-2014-0004) (Heartbleed)

McAfee VirusScan Enterprise for Linux OpenSSL Information Disclosure (SB10071) (Heartbleed)

McAfee VirusScan Enterprise for Linux Detection

McAfee Web Gateway OpenSSL Information Disclosure (SB10071) (Heartbleed)

McAfee Next Generation Firewall OpenSSL Information Disclosure (SB10071) (Heartbleed)

McAfee ePolicy Orchestrator OpenSSL Information Disclosure (SB10071) (Heartbleed)

McAfee Email Gateway OpenSSL Information Disclosure (SB10071) (Heartbleed)

HP LaserJet Pro Printers OpenSSL Heartbeat Information Disclosure (HPSBPI03014) (Heartbleed)

Nagios NRPE Command Argument Processing Enabled

CUPS < 1.7.2 is_path_absolute Function XSS

Junos Pulse Secure Access IVE / UAC OS OpenSSL Heartbeat Information Disclosure (JSA10623) (Heartbleed)

NAS4Free Version

NAS4Free Web UI Detection

Fortinet OpenSSL Information Disclosure (Heartbleed)

Patch Management: SCCM Computer Info Initialization

Oracle Access Manager Unspecified WebGate Webserver Plugin Vulnerability

Unsupported Brocade Fabric OS

Oracle WebCenter Portal People Connection Subcomponent Unspecified Information Disclosure (April 2014 CPU)

Oracle Secure Global Desktop Multiple Vulnerabilities (April 2014 CPU)

Oracle Java SE Multiple Vulnerabilities (April 2014 CPU) (Unix)

Unsupported Fortinet Operating System

A10 Networks Remote Buffer Overflow

A10 Networks Advanced Core OS Device Detection

OpenVPN Heartbeat Information Disclosure (Heartbleed)

HP StoreVirtual 4000 and StoreVirtual VSA Software dbd_manager RCE

HP LeftHand OS Unmanaged Host Detection

OpenSSL Heartbeat Information Disclosure (Heartbleed)

EMC Cloud Tiering Appliance Web Interface Detection

EMC RSA Authentication Manager Version

McAfee Email Gateway Version

Citrix NetScaler Application Delivery Controller Multiple Vulnerabilities

Citrix NetScaler Version Detection

3Com Switch Default Admin Credentials

McAfee Cloud Single Sign On < 4.0.1 Information Disclosure (SB10066) (McAfee Linux OS)

McAfee Web Gateway < 7.3.2.6 / 7.4.1 Information Disclosure (SB10063)

McAfee Web Gateway Detection

Samba 3.4.x < 3.6.23 / 4.0.x < 4.0.16 / 4.1.x < 4.1.6 Multiple Vulnerabilities

OpenSSH < 6.6 Multiple Vulnerabilities

Juniper Junos Pulse Secure Access Service IVE OS (SSL VPN) Linux Network Connect Client Local Privilege Escalation (JSA10616)

Juniper Junos Pulse Secure Access Service IVE OS (SSL VPN) XSS (JSA10617)

Asterisk PJSIP Channel Driver Subscription DoS (AST-2014-004)

Asterisk PJSIP Channel Driver Options DoS (AST-2014-003)

Asterisk SIP File Descriptor Exhaustion with chan_sip Session-Timers DoS (AST-2014-002)

Asterisk main/http.c DoS (AST-2014-001)

Apple TV < 6.1 Multiple Vulnerabilities

NETGEAR Hard-coded Telnet Unlock Credentials

NETGEAR DGN2200 Multiple Vulnerabilities

ZTE ZXV10 W300 Wireless Router Hard-coded Password

IBM Domino < 8.5.3 FP 6 IF 1 / 9.0.1 IF 2 DoS

Lexmark Printer config.html Administrator Authentication Bypass

Lexmark Printer Configuration Persistent XSS

Nortel Meridian Integrated RAN Default Admin Credentials

Apple Boot Camp Support Software Installed

Nortel CS Signaling Server Default Admin Credentials

Xerox ColorQube ConnectKey Controller Multiple Unspecified Vulnerabilities (XRX14-001)

Ubiquiti airCam < 1.2.0 ubnt-streamer RTSP Service Remote Code Execution

Ubiquiti airCam Detection

Symantec Encryption Management Server < 3.3.2 Information Disclosure

Symantec Encryption Server Detection

NVIDIA Graphics Driver Unspecified Privilege Escalation (Unix / Linux)

NVIDIA Graphics Card Driver Detection (Unix / Linux)

Oracle Identity Manager (April 2012 CPU)

Kerio Connect < 8.1.0 SSL/TLS Information Disclosure (BEAST)

Oracle Identity Manager (October 2013 CPU

Oracle Secure Global Desktop Unsupported Version Detection

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2014 CPU)

Emerson Network Power Avocent MergePoint Unity KVM Switch < 1.14 / 1.18 download.php filename Parameter Directory Traversal

Emerson Network Power Avocent MergePoint Unity KVM Switch Detection

Oracle Identity Manager Identity Console (January 2014 CPU)

Oracle Identity Manager End User Self Service (January 2014 CPU)

Alvarion Multiple Products Default Telnet Credentials

memcached SASL Authentication Security Bypass

Oracle Access Manager (October 2013 CPU)

Oracle Access Manager Server Installation Detection (credentialed check)

JBoss Detection

VMware vCloud Director 5.1.x < 5.1.3 Logout XSRF (VMSA-2014-0001)

Informix Server GSKit < 7.0.4.47 / 8.0.50.13 SSL/TLS DoS

Oracle WebCenter Portal Page Service Subcomponent Unspecified Information Disclosure

Oracle WebCenter Portal Installation Detection

Oracle Internet Directory LDAP Server Unspecified Remote Information Disclosure

Oracle Identity Manager Detection

ESXi 5.1 < Build 1483097 Multiple Vulnerabilities (remote check)

Oracle E-Business (January 2014 CPU)

CUPS 1.6.x >= 1.6.4 / 1.7.x < 1.7.1 lppasswd Information Disclosure

Oracle Java SE Multiple Vulnerabilities (January 2014 CPU) (Unix)

HP Intelligent Management Center SOM Module < 7.0 E0101 Multiple Vulnerabilities

HP Intelligent Management Center Branch Intelligent Management Module Multiple Vulnerabilities

HP Intelligent Management Center APM Module < 7.0 E0101 SQL Injection

HP Intelligent Management Center < 7.0 E0102 DES / ECB Weak Decryption Key

HP Intelligent Management Center SOM Module Information Disclosure

HP Intelligent Management Center BIMS Module Information Disclosure

HP Intelligent Management Center Web Administration Interface Default Credentials

HP Intelligent Management Center Web Administration Interface Detection

RealVNC < 5.0.7 Multiple Local Privilege Escalations

IBM Domino 9.x < 9.0.1 Multiple Vulnerabilities (uncredentialed check)

IBM Domino 8.5.x < 8.5.3 FP6 iNotes Multiple XSS (uncredentialed check)

Apache Solr Detection

HP Data Protector Multiple Vulnerabilities (HPSBMU02895 SSRT101253)

Network Time Protocol Daemon (ntpd) monlist Command Enabled DoS

ESXi 5.5 < Build 1474526 File Descriptors Privilege Escalation (remote check)

ESXi 5.1 < Build 1312873 File Descriptors Privilege Escalation (remote check)

Oracle Installed Software Enumeration (Linux / Unix)

Asterisk Multiple Vulnerabilities (AST-2013-006 / AST-2013-007)

Quagga 0.99.21 bgp_attr.c BGP Update DoS

HP LaserJet Printers Unspecified Denial of Service (HPSBPI02938)

Oracle Java JRE Premier Support and Extended Support Version Detection (Unix)

Tenable SecurityCenter Unsupported Version Detection

Tenable Passive Vulnerability Scanner Unsupported Version Detection (credentialed check)

Tenable Passive Vulnerability Scanner Unsupported Version Detection (remote check)

Nessus Unsupported Version Detection

Tenable Log Correlation Engine Server Unsupported Version Detection

Juniper Junos Pulse Secure Access Service IVE OS (SSL VPN) XSS (JSA10602)

HP Multiple Network Products Remote Information Disclosure and DoS (HPSBHF02912)

Samba 3.x < 3.6.22 / 4.0.x < 4.0.13 / 4.1.x < 4.1.3 Multiple Vulnerabilities

Tenable SecurityCenter Installed

Tenable Passive Vulnerability Scanner Installed (Linux credentialed check)

Tenable Log Correlation Engine (LCE) Server Installed (credentialed check)

Blackboard LC3000 Laundry Reader Default Telnet Password

ASUS RT-N13U Router Built-in Admin Telnet Account with Unchangeable Password

SSH Weak MAC Algorithms Enabled

Juniper NSM Servers < 2012.2R5 Multiple Vulnerabilities

MikroTik RouterOS 5.x < 5.26 / 6.x < 6.3 sshd Unspecified Remote Heap Corruption

Cisco TelePresence VX Clinical Assistant WIL-A Module Reboot Admin Password Removal

Samba 3.x < 3.6.20 / 4.0.x < 4.0.11 / 4.1.x < 4.1.1 Multiple Vulnerabilities

OpenVAS Administrator / Manager Authentication Bypass

OpenSSH 6.2 and 6.3 AES-GCM Cipher Memory Corruption

ESXi 5.1 < Build 911593 Multiple Vulnerabilities (remote check)

ESXi 5.1 < Build 1142907 NFC Traffic Denial of Service (remote check)

ESXi 5.1 < Build 1063671 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 912577 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 764879 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 721882 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 702118 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 608089 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 515841 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 1311175 Multiple Vulnerabilities (remote check)

ESXi 5.0 < Build 1197855 NFC Traffic Denial of Service (remote check)

ESXi 5.0 < Build 1022489 Multiple Vulnerabilities (remote check)

Quagga < 0.99.22.2 OSPF API Buffer Overflow

IBM Domino 8.5.x < 8.5.3 FP 5 Multiple Vulnerabilities

Oracle Secure Global Desktop ttaauxserv Remote Denial of Service (remote check)

Oracle Secure Global Desktop ttaauxserv Remote Denial of Service (credentialed check)

Oracle Secure Global Desktop Linux Installation Detection

Xerox ColorQube Unspecified Remote Protocol Authorization Bypass (XRX13-008)

Xerox WorkCentre Unspecified Remote Protocol Authorization Bypass (XRX13-008)

SSH Server CBC Mode Ciphers Enabled

SSH Algorithms and Languages Supported

VMware Security Updates for vCenter Server (VMSA-2013-0012)

IBM Tivoli Storage Manager Client Local Buffer Overrun

Oracle Database Management Plug-In Unix (October 2013 CPU) (credentialed check)

Dropbear SSH Server < 2013.59 Multiple Vulnerabilities

Oracle Java SE Multiple Vulnerabilities (October 2013 CPU) (Unix)

Oracle E-Business (October 2013 CPU)

HP LaserJet Printers Multiple Vulnerabilities

Xerox ColorQube Multiple Unspecified Vulnerabilities (XRX13-006)

Xerox WorkCentre Multiple Unspecified Vulnerabilities (XRX13-006)

XEROX ColorQube Device Detection

Apple TV < 6.0 Multiple Vulnerabilities

Oracle E-Business (July 2013 CPU)

Oracle E-Business Version and Patch Info

IBM Tivoli NetView for z/OS Privilege Escalation

HP Multiple Network Products Unspecified Information Disclosure and Remote Code Execution (HPSBHF02888)

HP OpenView Communication Broker Arbitrary File Deletion (HPSBMU02691)

Juniper Steel-Belted Radius Multiple OpenSSL Vulnerabilities

IBM Tivoli Access Manager for e-Business WebSEAL Multiple Vulnerabilities

IBM Tivoli Access Manager for e-Business / IBM Security Access Manager for Web Installed Components

IBM Lotus Sametime Multiplexer Buffer Overflow

HP Network Automation Remote Unauthorized Access (HPSBMU02738)

Intel Xeon Baseboard Management Component (BMC) Privilege Escalation (INTEL-SA-00026)

Polycom HDX < 3.1.1.2 Multiple Vulnerabilities

Polycom SIP Detection

Juniper Junos Pulse Secure Access Service IVE OS (SSL VPN) Multiple XSS (JSA10589)

Junos Pulse Secure IVE / UAC OS Multiple SSL Vulnerabilities

Junos Pulse Secure IVE / UAC OS DoS (JSA10590)

DISA Security Readiness Review Scripts for Solaris Local Privilege Escalation

DISA Security Readiness Review Scripts Detection

Juniper NSM Web Proxy SOAP Interface Detection

Juniper NSM Web Proxy Detection

Juniper NSM Servers Multiple Java JDK/JRE Vulnerabilities (PSN-2012-08-689)

Juniper NSM Linux Kernel TCP Sequence Number Generation Issue (PSN-2012-08-688)

Juniper NSM Servers < 2012.1 Multiple Vulnerabilities

Juniper NSM Servers Detection (credentialed check)

VxWorks 5.5 through 6.9 Multiple Vulnerabilities

Apple AirPort Base Station (802.11n) Firmware < 7.6.4 Remote DoS (APPLE-SA-2013-09-06-1)

iLO 3 < 1.50 / iLO 4 < 1.13 Unspecified Information Disclosure

Asterisk SIP Channel Driver Invalid SDP Denial of Service (AST-2013-005)

Asterisk SIP Channel Driver ACK with SDP Denial of Service (AST-2013-004)

RSA SecurID Software Token Converter Buffer Overflow

Microsoft SQL Server STARTTLS Support

Multiple Vendors EAS Authentication Bypass

ArcSight Logger Installed (Linux)

HP ArcSight Logger < 5.3 Multiple Vulnerabilities (credentialed check)

HP ProCurve Switches Remote Unauthorized Information Disclosure

HP ProCurve 5400 zl Switches Compact Flash Card Security Issue

Mac OS X Directory Service Buffer Overflow

HP LaserJet Pro Printers Multiple Information Disclosures (July 2013)

Samba 3.x < 3.5.22 / 3.6.x < 3.6.17 / 4.0.x < 4.0.8 read_nttrans_ea_lis DoS

Symantec Backup Exec RALUS Code Execution (SYM13-009)

Symantec Backup Exec Remote Agent for Linux and UNIX Servers (RALUS) Installed

Junos Pulse Secure Access Service (SSL VPN) Multiple XSS (JSA10554)

Juniper IVE OS Unintentionally Trusted Certificate Authorities

Pulse Connect Secure Unsupported Version Detection

Cisco Wireless Control System Installed (Linux)

VMware vCenter Operations Manager Arbitrary File Upload (VMSA-2012-0013)

Cisco Prime Data Center Network Manager Installed (Linux)

VMware vCenter Server Appliance Multiple Vulnerabilities (VMSA-2013-0006)

HP Data Protector Components Version Detection

Samba 3.6.x < 3.6.6 Remote Security Bypass

Hazelcast REST Interface Detection

HP Data Protector Local Privilege Escalation

Oracle Java SE Multiple Vulnerabilities (June 2013 CPU) (Unix)

HP Data Protector Multiple RCE Vulnerabilities

Mac OS X 10.7 / 10.8 Unauthorized File Access (remote check)

VMware vCenter Server Multiple Vulnerabilities (VMSA-2012-0005)

VMware vCenter Multiple Vulnerabilities (VMSA-2012-0013)

Skype for Windows < 6.3.0.105 Multiple Vulnerabilities (uncredentialed check)

Android Emulator Telnet Port on Remote Host

Nagios NRPE nrpe.c Arbitrary Command Execution

HP LaserJet Pro Printers Unauthorized Data Access (April 2013)

X Server Unauthenticated Access: Screenshot

Lexmark Markvision Enterprise Remote Command Execution

Groovy Shell Unauthenticated Remote Command Execution

ClamAV < 0.97.8 Multiple Vulnerabilities

VMware Security Updates for vCenter Server (VMSA-2013-0006)

VNC Server Unauthenticated Access: Screenshot

Oracle Java SE Multiple Vulnerabilities (April 2013 CPU) (Unix)

CUPS < 1.6.2 Multiple Vulnerabilities

Asterisk SIP Channel Driver Username Disclosure (AST-2013-003)

Asterisk HTTP Content-Length Header DoS (AST-2013-002)

Asterisk SIP SDP Buffer Overflow (AST-2013-001)

Patch Management: Tivoli Endpoint Manager Get Installed Packages

ClamAV < 0.97.7 Multiple Vulnerabilities

Samba 4.x < 4.0.4 AD DC File Permissions

HP LaserJet Pro Printers Unauthorized Data Access

VMware vCenter Server NFC Protocol Code Execution (VMSA-2013-0003)

VMware vCenter Server Denial of Service (VMSA-2012-0018)

ShadowIRCd m_capab.c Denial of Service

ircd-ratbox m_capab.c Denial of Service

Charybdis IRCd m_capab.c Denial of Service

Oracle Java JDK / JRE 7 < Update 17 Remote Code Execution (Unix)

Oracle Java JDK / JRE 6 < Update 43 Remote Code Execution (Unix)

Oracle Java JDK / JRE 5 < Update 41 Remote Code Execution (Unix)

Oracle Java SE Multiple Vulnerabilities (February 2013 CPU Update 1) (Unix)

Oracle Java SE Multiple Vulnerabilities (February 2013 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (October 2012 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (June 2012 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (February 2012 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (October 2011 CPU) (BEAST) (Unix)

Oracle Java SE Multiple Vulnerabilities (June 2011 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (February 2011 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (October 2010 CPU) (Unix)

Oracle Java SE Multiple Vulnerabilities (March 2010 CPU) (Unix)

Oracle Java SE 7 < Update 7 Multiple Vulnerabilities (Unix)

Oracle Java SE 7 < Update 11 Multiple Vulnerabilities (Unix)

Oracle Java JDK / JRE 6 < Update 35 SunToolKit getField() and getMethod() Access Issue (Unix)

Oracle Java JDK / JRE 6 < Update 30 Multiple Vulnerabilities (Unix)

Oracle Java JDK / JRE 6 < Update 20 Multiple Vulnerabilities (Unix)

Sun Java JRE / Web Start Java Plug-in Untrusted Applet Privilege Escalation (Unix)

Sun Java JRE Plug-in Capability Arbitrary Package Access (Unix)

Sun Java Web Start JNLP File Handling Overflow (102996) (Unix)

Sun Java JDK/JRE 6 < Update 7 Multiple Vulnerabilities (Unix)

Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities (Unix)

Sun Java JRE Multiple Vulnerabilities (269868 / 269869 / 270476 ...) (Unix)

Sun Java JRE Multiple Vulnerabilities (263408 / 263409 / 263428 ..) (Unix)

Sun Java JRE Multiple Vulnerabilities (254569 / 254611 / 254608 ..) (Unix)

Sun Java JRE Multiple Vulnerabilities (244986 et al) (Unix)

Sun Java JRE Multiple Vulnerabilities (233321-233327) (Unix)

Sun Java JRE Applet Handling Privilege Escalation (231261) (Unix)

Sun Java JRE External XML Entities Restriction Bypass (231246) (Unix)

Sun Java JRE / Web Start Multiple Vulnerabilities (103072, 103073, 103078, 103079, 103112) (Unix)

Sun Java JRE Font Parsing Privilege Escalation (103024) (Unix)

Sun Java JRE XML Signature Command Injection (102993) (Unix)

Sun Java JRE Image Parsing Vulnerabilities (102934) (Unix)

Sun Java Web Start Unauthorized Access (102881) (Unix)

Sun Java JRE GIF Image Handling Buffer Overflow (102760) (Unix)

Sun Java JRE Multiple Vulnerabilities (102729 / 102732) (Unix)

Sun Java J2SE 1.4.2 < Update 18 Multiple Vulnerabilities (Unix)

Oracle Java JRE Unsupported Version Detection (Unix)

Terminal Services Use SSL/TLS

Asterisk Multiple Vulnerabilities (AST-2012-014 / AST-2012-015)

UnrealIRCd Unspecified DoS

HP Data Protector Unsupported

Samba < 3.5.21 / 3.6.12 / 4.0.2 SWAT Multiple Vulnerabilities

Ekiga SIP Detection

Apple TV < 5.2 Multiple Vulnerabilities

Samba 4.x < 4.0.1 AD DC LDAP Directory Objects Security Bypass

Novell eDirectory 8.8.x Multiple Security Vulnerabilities

FreeSWITCH Route Header Value Handling DoS

Asterisk Detection

Novell File Reporter Agent FSFUI UICMD 126 Arbitrary File Download

CoSoSys Endpoint Protector 4 Predictable Password

Patch Management: Tivoli Endpoint Manager Report

Patch Management: Missing updates from Tivoli Endpoint Manager

Patch Management: Tivoli Endpoint Manager Computer Info Initialization

Advanced Message Queuing Protocol Detection STARTTLS Support

Asterisk Peer IAX2 Call Handling ACL Rule Bypass (AST-2012-013)

Asterisk Manager Interface ExternalIVR Application Originate Action Remote Shell Command Execution (AST-2012-012)

Novell eDirectory < 8.8 SP6 Patch 5 Multiple Vulnerabilities

Oracle Integrated Lights Out Manager Default Credentials

Asterisk Multiple Caller Simultaneous Voicemail Account Manipulation Double-free Remote DoS (AST-2012-011)

Asterisk Endpoint Provisional Response Parsing RTP Port Consumption Remote DoS (AST-2012-010)

Eudora WorldMail Unsupported

Scanner Env. Variables Setup

Check_MK Agent Detection

HAProxy Trash Buffer Overflow Vulnerability

Quagga Zebra Detection

Quagga < 0.99.9 BGPD Multiple Denial of Service Vulnerabilities

Quagga < 0.98.7 / 0.99.7 BGPD Denial of Service Vulnerability

Quagga < 0.98.6 / 0.99.4 Multiple Vulnerabilities

Quagga < 0.99.21 BGP Denial of Service Vulnerability

Quagga < 0.99.20.1 Multiple Vulnerabilities

Quagga < 0.99.19 Multiple Vulnerabilities

Quagga < 0.99.18 BGPD Multiple Denial of Service Vulnerabilities

Quagga < 0.99.17 BGPD Multiple Vulnerabilities

Quagga < 0.99.12 BGPD Denial of Service Vulnerability

Quagga < 0.96.4 Zebra Denial of Service Vulnerability

MikroTik Winbox < 5.17 File Download DoS

ClamAV < 0.97.5 Multiple Vulnerabilities

Asterisk Remote Crash Vulnerability in Skinny Channel Driver (AST-2012-009)

Network UPS Tools < 2.6.4 addchar() Function Buffer Overflow

Network UPS Tools Cleartext Authentication

Network UPS Tools Service STARTTLS Command Support

Asterisk Remote Crash Vulnerability in Skinny Channel Driver (AST-2012-008)

Asterisk Remote Crash Vulnerability in IAX2 Channel Driver (AST-2012-007)

Citrix Provisioning Services Unspecified Request Parsing Remote Code Execution (CTX133039) (uncredentialed check)

Samba 3.x < 3.4.17 / 3.5.15 / 3.6.5 Security Bypass

Asterisk Remote Crash Vulnerability in SIP Channel Driver (AST-2012-006)

Asterisk Heap-Based Buffer Overflow in Skinny Channel Driver (AST-2012-005)

Asterisk Manager User Unauthorized Shell Access (AST-2012-004)

RealNetworks Helix Server 14.x < 14.3.x Multiple Vulnerabilities

Samba 3.x < 3.6.4 / 3.5.14 / 3.4.16 RPC Multiple Buffer Overflows

Netstat Active Connections

at32 Reverse Proxy Admin Portal No Password

at32 Reverse Proxy Detection

Terminal Services Doesn't Use Network Level Authentication (NLA) Only

Asterisk ast_parse_digest Function HTTP Digest Authentication String Parsing Remote Overflow (AST-2012-003)

Asterisk milliwatt_generate Function Internal Data Sample Packet Parsing Remote DoS (AST-2012-002)

Asterisk SRTP Video Stream Negotiation Remote Crash (AST-2012-001)

HP Data Protector Media Operations DBServer opcode 0x10 Traversal Arbitrary File Access

Samba 'AndX' Request Heap-Based Buffer Overflow

Patch Management: SCCM Report

HP Printer Firmware Signing Disabled

Dropbear SSH Server Channel Concurrency Use-after-free Remote Code Execution

DNSChanger Malware Detection

Patch Management: WSUS Report

LDAP 'Domain Admins' Group Membership Enumeration

Skype for Windows < 5.8.0.154 Unspecified Vulnerability (uncredentialed check)

IBM iSeries Default Password

Samba 3.6.x < 3.6.3 Denial of Service

Terminal Services Encryption Level is Medium or Low

SMB Signing Disabled

NNTP Service Cleartext Login Permitted

Anonymous NNTP Authentication Enabled

NNTP Authentication Methods

Asterisk Multiple Vulnerabilities (AST-2011-013 / AST-2011-014)

CA eTrust Directory SNMP Packet Parsing Denial of Service

Patch Management: Missing updates from WSUS

Patch Management: Missing updates from SCCM

Patch Management: Missing updates from VMware Go (deprecated)

Patch Management: Host information from VMware Go (deprecated)

SIP Username Enumeration

Asterisk Invalid INVITE / REGISTER SIP Request Username Enumeration (AST-2011-011)

KVM / QEMU Guest Detection (uncredentialed check)

Apple Time Capsule and AirPort Base Station (802.11n) Firmware < 7.6 (APPLE-SA-2011-11-10-2)

Wireshark / Ethereal Unsupported Version Detection

KVM / QEMU Guest Detection (credentialed check)

Linux /proc/cpuinfo

CUPS < 1.4.7 'gif_read_lzw' Buffer Overflow

SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure

ClamAV < 0.97.2 'cli_hm_scan' Denial of Service

Adobe Media Server Unsupported Version Detection

Adobe Flash Media Server < 3.5.7 / 4.0.3 Denial of Service (APSB11-20)

Samba 3.x < 3.3.16 / 3.4.14 / 3.5.10 Multiple Vulnerabilities

XMPP Service STARTTLS Plaintext Command Injection

ACAP Service STARTTLS Plaintext Command Injection

Adobe Flash Media Server < 3.5.6 / 4.0.2 Multiple Vulnerabilities (APSB11-11)

HP Data Protector < A.06.20 Multiple Vulnerabilities

NNTP Service STARTTLS Plaintext Command Injection

Skype for Mac 5.x < 5.1.0.922 Unspecified Remote Code Execution (uncredentialed check)

Portable OpenSSH ssh-keysign ssh-rand-helper Utility File Descriptor Leak Local Information Disclosure

Zend Server Java Bridge Arbitrary Java Code Execution

Dell KACE K2000 Appliance Hidden CIFS Fileshare Information Disclosure

HP StorageWorks File Migration Agent Unauthorized Access

POP3 Service STLS Plaintext Command Injection

IMAP Service STARTTLS Plaintext Command Injection

Samba 3.x < 3.3.15 / 3.4.12 / 3.5.7 'FD_SET' Memory Corruption

VMware Studio 2.x < 2.1 Multiple Vulnerabilities

ClamAV < 0.97 Multiple Vulnerabilities

OpenSSH Legacy Certificate Signing Information Disclosure

Xerox WorkCentre Command Injection (XRX11-001)

Telnet Service START_TLS Support

iSCSI Unauthenticated Target Detection

Apple Time Capsule and AirPort Base Station Firmware < 7.5.2 (APPLE-SA-2010-12-16-1)

ClamAV < 0.96.5 Multiple Vulnerabilities

OpenVZ Guest Detection

CUPS < 1.4.5 Multiple Vulnerabilities

Adobe Flash Media Server Version Detection

Serv-U < 10.3.0.1 SFTP Authentication Bypass

Adobe Flash Media Server < 3.0.7 / 3.5.5 / 4.0.1 Multiple Vulnerabilities (APSB10-27)

ClamAV < 0.96.3 Multiple Vulnerabilities

Mac OS X AFP Shared Folders Unauthenticated Access (Security Update 2010-006) (uncredentialed check)

Samba 3.x < 3.5.5 / 3.4.9 / 3.3.14 sid_parse Buffer Overflow

Adobe Flash Media Server < 3.0.6 / 3.5.4 Multiple Vulnerabilities (APSB10-19)

Wing FTP Server < 3.6.1 Multiple Flaws

Ipswitch IMail Server < 11.02 Multiple Vulnerabilities

CUPS < 1.4.4 Multiple Vulnerabilities

XLight FTP Server 3.x SFTP Directory Traversal

D-Link DCC Protocol Security Bypass

Kerio Connect < 7.0.0 Products Administration Console File Disclosure and Corruption Vulnerabilities

Xerox WorkCentre Multiple Unspecified Vulnerabilities (XRX10-003)

Samba 3.x < 3.3.13 SMB1 Packet Chaining Memory Corruption

Novell eDirectory < 8.8 SP5 Patch 4 Multiple Vulnerabilities

Beanstalkd < 1.4.6 Remote Beanstalkd Command Injection

ClamAV < 0.96.1 Multiple Vulnerabilities

Samba < 3.4.8 / 3.5.2 Session Setup AndX DoS

HP Mercury LoadRunner Agent Remote Command Execution

ClamAV Antivirus Detection and Status

CUPS < 1.4.3 Multiple Vulnerabilities

RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities

LDAP User Enumeration

LDAP Group Enumeration

ClamAV < 0.96 Multiple Vulnerabilities

AFP Server Share Enumeration (guest)

AFP Server Directory Traversal

EMC RepliStor rep_srv.exe Crafted TCP Packet Remote DoS (ESA-09-019)

Samba 'CAP_DAC_OVERRIDE' File Permission Security Bypass

Samba 'CAP_DAC_OVERRIDE' File Permission Security Bypass (version check)

Xerox WorkCentre Authorization Bypass Vulnerabilities (XRX10-002)

Xerox WorkCentre Crafted PostScript File Handling Directory Access (XRX10-001)

XMail < 1.27 Insecure Temporary File Creation

Novell eDirectory < 8.8 SP5 Patch 3 eMBox SOAP Request DoS

Linux Daemons with Broken Links to Executables

Intel Desktop Boards Privilege Escalation (INTEL-SA-00022)

Zabbix node_process_command() Function Crafted Request Arbitrary Command Execution

Samba Symlink Traversal Arbitrary File Access (unsafe check)

Linksys Router Detection

HP Data Protector Unspecified Local Unauthorized Access

Oracle WebLogic Server Node Manager Remote Command Execution

OpenSSH < 5.7 Multiple Vulnerabilities

OpenSSH X11UseLocalhost X11 Forwarding Port Hijacking

OpenSSH < 4.9 'ForceCommand' Directive Bypass

OpenSSH < 4.7 Trusted X11 Cookie Connection Policy Bypass

OpenSSH < 4.5 Multiple Vulnerabilities

OpenSSH < 4.3 scp Command Line Filename Processing Command Injection

OpenSSH < 4.0 known_hosts Plaintext Host Information Disclosure

Portable OpenSSH < 3.8p1 Multiple Vulnerabilities

OpenSSH < 2.9.9 / 2.9p2 Symbolic Link 'cookies' File Removal

OpenSSH < 2.9.9p2 echo simulation Information Disclosure

OpenSSH < 2.9.9p1 Resource Limit Bypass

OpenSSH < 2.5.2 / 2.5.2p2 Multiple Information Disclosure Vulnerabilities

OpenSSH < 1.2.3 xauth Session Highjacking

OpenSSH < 5.2 CBC Plaintext Disclosure

Kerberos Information Disclosure

Sun Java System Directory Proxy Server 6.x < 6.3.1.1 Multiple Vulnerabilities.

Zabbix Server send_history_last_id() SQL Injection

Adobe Flash Media Server < 3.0.5 / 3.5.3 Multiple Vulnerabilities (APSB09-18)

NTP ntpd Mode 7 Error Response Packet Loop Remote DoS

Novell eDirectory < 8.8.5.2 / 8.7.3.10 ftf2 'NDS Verb' Request Buffer Overflow

CUPS < 1.4.2 kerberos Parameter XSS

Intel Desktop Board Bitmap Processing Buffer Overflow (INTEL-SA-00020)

LDAP Service STARTTLS Command Support

Unencrypted Telnet Server

leafnode fetchnews DoS

leafnode Cross-Posted Article Group Name Prefix DoS

Intel Desktop Boards BIOS Unauthorized BIOS Flash (INTEL-SA-00019)

XMPP Service STARTTLS Command Support

POP3 Service STLS Command Support

IMAP Service STARTTLS Command Support

Samba < 3.0.37 / 3.2.15 / 3.3.8 / 3.4.2 Multiple Vulnerabilities

Ability Mail Server < 2.70 IMAP4 FETCH DoS

Xerox WorkCentre Web Services Extensible Interface Platform Unauthorized Access (XRX09-003)

Intel System Management Mode Local Privilege Escalation (INTEL-SA-00018)

RealNetworks Helix Server < 13.0.0 Multiple Remote DoS

NSClient Default Password

Novell eDirectory < 8.8 SP5 Multiple Vulnerabilities

RIP-2 Poisoning Routing Table Modification

RIP-1 Poisoning Routing Table Modification

RIP Poisoning Routing Table Modification (Adjacent Network)

Samba < 3.0.35 / 3.2.13 / 3.3.6 Multiple Vulnerabilities

ClamAV < 0.95.2 Multiple Scan Evasion Vulnerabilities

ClamAV Version Detection

IBM Baseboard Management Controller Default Credentials

Network Time Protocol Daemon (ntpd) 4.x < 4.2.4p7 / 4.x < 4.2.5p74 crypto_recv() Function RCE

Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)

QMTP Open Relay

Adobe Flash Media Server RPC Privilege Escalation (APSB09-05)

Memcached / MemcacheDB ASLR Bypass Weakness

pam_ssh Login Prompt Remote Username Enumeration

CUPS < 1.3.10 Multiple Vulnerabilities

ClamAV < 0.95.1 Multiple Vulnerabilities

ClamAV < 0.95 Scan Evasion

Samhain SRP Protocol Implementation Authentication Bypass

Ethernet Card Manufacturer Detection

Internet Gateway Device WAN Interface UPnP Access

UPnP Internet Gateway Device (IGD) Protocol Detection

UPnP Internet Gateway Device (IGD) External IP Address Reachable

UPnP Internet Gateway Device (IGD) Port Mapping Manipulation

Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-001)

Samba 3.2.0 - 3.2.6 Unauthorized Access

Xen Guest Detection

Samba 3.0.29 - 3.2.4 Potential Memory Disclosure

Dropbear SSH Server svr_ses.childpidsize Remote Overflow

CUPS < 1.3.9 Multiple Vulnerabilities

Novell eDirectory < 8.7.3 SP10 FTF1 Multiple Vulnerabilities

Xerox WorkCentre Samba Overflow (XRX08-009)

Novell eDirectory < 8.8 SP3 Multiple Vulnerabilities (OF, XSS, MC)

Default Password (0000) for 'user' on WIP5000 IP Phone

Default Password (000000) for 'admin' on WIP5000 IP Phone

Intel System Management Mode Local Privilege Escalation (INTEL-SA-00017)

Attachmate Reflection for Secure IT UNIX server < 7.0 SP1 Multiple Vulnerabilities

Network daemons not managed by the package system

CUPS < 1.3.8 PNG File Handling Multiple Overflows

Retrospect Backup Client Multiple Vulnerabilities (ESA-08-009)

SurgeMail IMAP Service APPEND Command Remote DoS

Kismet Server Information Disclosure

Xerox WorkCentre Extensible Interface Platform Unspecified Security Bypass (XRX08-006)

Samba < 3.0.30 receive_smb_raw Function Remote Buffer Overflow

Asterisk SIP Remote Authentication Bypass

Sun Java System Directory Server bind-dn Remote Privilege Escalation

Novell eDirectory eMBox Utility Unauthorized Access (uncredentialed check)

OpenSSH X11 Forwarding Session Hijacking

CUPS < 1.3.7 Multiple Vulnerabilities

Dovecot passdbs Argument Injection Authentication Bypass

CUPS < 1.3.6 process_browse_data() Function Double Free DoS

SAPlpd < 6.29 Multiple Vulnerabilities

Terminal Services Encryption Level is not FIPS-140 Compliant

MikroTik RouterOS with Blank Password (telnet check)

WinComLPD LPD Monitoring Server Authentication Bypass

WinComLPD LPD Monitoring Server Default Credentials

Xerox WorkCentre Multiple Samba Vulnerabilities (XRX08-001)

Avocent KVM Over IP Switch Detection

CUPS SNMP Back End (backend/snmp.c) asn1_get_string Function Crafted SNMP Response Remote Overflow

StarWind Control Port Default Credentials

Samba < 3.0.28 send_mailslot Function Remote Buffer Overflow

Samba < 3.0.27 Multiple Vulnerabilities

CUPS cups/ipp.c ippReadIO Function IPP Tag Handling Overflow

K2 KeyServer Default Credentials

MagniComp SysInfo Agent Accessible

VNC Server Unauthenticated Access

SurgeMail IMAP Server SEARCH Command Remote Buffer Overflow

LDAP Crafted Search Request Server Information Disclosure

Xerox WorkCentre Multiple OpenSSL Vulnerabilities (XRX07-001)

SNMPc Management Server Default Credentials

Samba < 3.0.25 Multiple Vulnerabilities

Samba NDR MS-RPC Request Heap-Based Remote Buffer Overflow

CUPS Incomplete SSL Negotiation Remote DoS

Kiwi CatTools < 3.2.9 TFTP Server Traversal Arbitrary File Manipulation

Samba < 3.0.24 Multiple Flaws

Samba winbindd Debug Log Server Credentials Local Disclosure

Xerox WorkCentre Multiple Vulnerabilities (XRX06-006)

Xerox WorkCentre WebUI Arbitrary Command Execution (XRX06-005)

OpenSSH < 4.4 Multiple Vulnerabilities

Netopia Router Crafted SNMP Request Remote Admin Password Disclosure

Hobbit Monitor config Method Traversal Arbitrary File Access

sipXtapi INVITE Message CSeq Field Header Remote Overflow

FortressSSH SSH_MSG_KEXINIT Logging Remote Overflow

VNC Security Type Enforcement Failure Remote Authentication Bypass

Dovecot Multiple Command Traversal Arbitrary Directory Listing

OpenVPN Unprotected Management Interface

Xerox WorkCentre Multiple Vulnerabilities (XRX06-002)

Retrospect Client Malformed Packet DoS

ArGoSoft Mail Server Pro IMAP RENAME Command Traversal Arbitrary Directory Creation

ArGoSoft Mail Server _DUMP Command System Information Disclosure

eStara SoftPhone SIP Packet SDP Data attribute Field Overflow

eStara SoftPhone Detection

Xerox WorkCentre Multiple Vulnerabilities (XRX06-001)

Macallan IMAP Server Multiple Traversals Arbitrary File/Directory Manipulation

SSH Tectia Server SFTP Filename Logging Format String

AttachmateWRQ Reflection for Secure IT Server SFTP Format String

HylaFAX hfaxd with PAM Password Policy Bypass

SSH Tectia Server Host Authentication Authorization Bypass Vulnerability

Cheops-ng Cleartext Authentication Information Disclosure

Cheops NG Unauthenticated Access

X11 Server Unauthenticated Access

OpenSSH < 4.2 Multiple Vulnerabilities

AttachmateWRQ Reflection for Secure IT Server < 6.0 Build 24 Multiple Vulnerabilities

EMC Legato Networker Multiple Vulnerabilities

Xerox Document Centre MicroServer Web Server Multiple Vulnerabilities (XRX05-008)

Network Time Protocol Daemon (ntpd) < 4.2.1 -u Group Permission Weakness Privilege Escalation

HP-UX Ignite-UX TFTP Service Remote File Manipulation

HP Ignite-UX TFTP /etc/pass File Disclosure

HP Ignite-UX TFTP File Access Information Disclosure

Cisco CallManager TFTP File Detection

VERITAS Backup Exec Remote Agent Static Password Arbitrary File Download

Xerox WorkCentre Multiple Vulnerabilities (XRX05-006)

Bay Networks Accelar 1200 Switch Default Password (password) for 'usrname' Account

Allied Telesyn Router/Switch Default Password

Qpopper < 4.0.6 Multiple Insecure File Handling Local Privilege Escalation

ignitionServer < 0.3.6-P1 Multiple Vulnerabilities

Xerox Document Centre MicroServer Web Server Directory Navigation Crafted URL DoS (XRX05-004)

Xerox WorkCentre Multi-Page Document Scan/Fax Information Disclosure (XRX05-002)

Xerox DocuCentre / WorkCentre Postscript Interpreter Traversal (XRX05-001)

TFTP Traversal Arbitrary File Access

Xerox Document Centre Web Server Unspecified Unauthorized Access (XRX05-003)

Clearswift MIMEsweeper Manager Console Detection

Xerox WorkCentre MicroServer Multiple Vulnerabilities (XRX05-005)

Xerox WorkCentre Device Detection

Xerox Document Centre Device Detection

CVS < 1.11.20 / 1.12.12 Multiple Unspecified Vulnerabilities

IBM AS400 and iSeries POP3 Server Remote Information Disclosure

Lime Wire Multiple Remote Unauthorized Access

OpenSSH < 2.1.1p3 Format String Privilege Escalation

OpenSSH >= 2.3.0 AllowTcpForwarding Port Bouncing

Samba smbmnt Local Privilege Escalation

Samba < 3.0.2 mksmbpasswd.sh Uninitialized Passwords

Samba < 3.0.6 Unspecified Remote Memory Leak Information Disclosure

Samba SWAT 3.0.2 - 3.0.4 HTTP Basic Auth base64 Buffer Overflow

Samba idmap_ad.so Winbind nss_info Extension Local Privilege Escalation

Red Hat Enterprise Linux OpenSSH ChrootDirectory Local Privilege Escalation

OPIE w/ OpenSSH Account Enumeration

OpenSSH S/KEY Authentication Account Enumeration

OpenSSH < 3.4p1 scp Traversal Arbitrary File Overwrite

OpenSSH < 2.1.0 /dev/random Check Failure

OpenSSH < 1.2.2 sshd Local TCP Redirection Connection Masking Weakness

Avaya P330 Stackable Switch Default Password

Check Point Secure Platform Detection

Cisco IOS TFTP File Disclosure

Cisco IOS Device TFTP Certificate Authority (CA) File Detection

ZyXEL Routers Default Web Account

Knox Arkeia Network Backup Agent Default Account

fingerd Remote Overflow

UW-IMAP CRAM-MD5 Remote Authentication Bypass

FKey Arbitrary Remote File Disclosure

CUPS < 1.1.23 Multiple Vulnerabilities

POP Password Changer (poppassd_pam) Arbitrary User Remote Password Modification

HylaFAX Remote Access Control Bypass

CUPS Internet Printing Protocol (IPP) Implementation Empty UDP Datagram Remote DoS

IMAP Service Cleartext Login Permitted

POP3 Cleartext Logins Permitted

POP2 Cleartext Logins Permitted

ZyXEL Prestige Router Configuration Reset

Danware NetOp Host HELO Request Remote Information Disclosure

Nortel Multiple Default Accounts

Samba Multiple Remote Vulnerabilities

BNC IRC Server Incorrect Password Authentication Bypass

Samba MS-DOS Path Request Arbitrary File Retrieval

Intellipeer POP3 Server User Account Enumeration

Subversion < 1.0.8 / 1.1.0-rc4 mod_authz_svn Unreadable Path Metadata Information Disclosure

INN < 2.2.2 Crafted Article Handling Remote Overflow

ignitionServer umode Command Global Operator Privilege Escalation

ignitionServer SERVER Command Spoofed Server Saturation DoS

MAILsweeper Archive File Filtering Bypass

CVS history.c File Existence Information Disclosure

Subversion < 1.0.6 mod_authz_svn Restricted File Access Bypass

Pirelli AGE mB Router Default Password (microbusiness) for 'admin' Account

UnrealIRCd IP Cloaking Weakness Information Disclosure

Subversion < 1.0.5 svnserver svn:// Protocol Handler Remote Overflow

Qpopper Authentication Timing Response Account Enumeration

CVS < 1.11.17 / 1.12.9 Multiple Vulnerabilities

Subversion < 1.0.3 apr_time_t data Conversion Remote Overflow

Subversion < 1.0.4 Pre-Commit-Hook Remote Overflow

UoW imap Server (uw-imapd) Arbitrary Remote File Access

Mailman Crated Email Remote User Password Disclosure

CVS pserver Line Entry Handling Overflow

Lexmark / Dell Printer Unauthenticated Access

rsync Traversal Arbitrary File Creation

CVS Client Traversal Arbitrary File Retrieval

Web Application Default Username ('super'/'1502') / Password ('super'/'1502')

SMC2804WBR Router Default Password (smcadmin)

APC SmartSlot Web/SNMP Management Card Default Password

CVS PServer CVSROOT Passwd File Arbitrary Code Execution

Avotus CDR mm Arbitrary File Retrieval

CVS pserver Crafted Module Request Arbitrary File / Directory Creation

NetInfo Arbitrary Remote File Access

SCO OpenServer Multiple Local Privilege Escalation Vulnerabilities

OpenSSL ASN.1 Parser Multiple Remote DoS

LSH Daemon < 1.4.3 / 1.5.3 lshd Remote Overflow

RIP Poisoning Routing Table Modification

Dropbear SSH Server Username Remote Format String

UnrealIRCd OperServ Raw Channel Join DoS

CUPS Printer List Disclosure

OpenSSH < 3.6.2 Reverse DNS Lookup Bypass

Linux Kernel IP Stack ICMP Error Response Arbitrary Memory Information Disclosure

ShareMailPro POP3 Interface Error Message Account Enumeration

Apple AirPort Base Station Authentication Credential Encryption Weakness

FileMaker Pro Client Request User Passwords Remote Disclosure

OpenSSH w/ PAM Multiple Timing Attack Weaknesses

NETGEAR FM114P ProSafe Router Multiple Vulnerabilities

Kerberos 5 < 1.3.5 Multiple Vulnerabilities

Kerberos 4 Realm Principle Impersonation

3com RAS 1500 Configuration Disclosure

HP JetDirect < Q.24.09 Multiple Vulnerabilities

CVS Malformed Directory Request Double-free Privilege Escalation

CVS pserver Brute Force Access

Qpopper pop_msg() Macroname Remote Overflow

Irix Performance Copilot Service Information Disclosure

OpenSSH Client Unauthorized X11 Remote Forwarding

SSH ssh-keygen with Secure-RPC SUN-DES-1 Phrase Recovery

Nortel Baystack Default Password

ClarkConnect Linux clarkconnectd Remote Information Disclosure

Motorola Vanguard with No Password (telnet check)

Nortel/Bay Networks/Xylogics Annex Default Password

CUPS < 1.1.18 Multiple Vulnerabilities

Multiple Ethernet Driver Frame Padding Information Disclosure (Etherleak)

SSH Multiple Remote Vulnerabilities

akfingerd 0.5 Multiple Vulnerabilities

SSH Secure Shell without PTY setsid() Function Privilege Escalation

Citrix Published Applications Remote Enumeration

Generic Format String Detection

Red Hat 6.2 inetd Internal Service Connections Remote DoS

Shiva LanRover Blank Password

Nortel/Bay Networks Default Password

SSH 3 AllowedAuthentications Remote Bypass

AirConnect Default Password

Qpopper .qpopper-options Username Handling Overflow

OpenSSH < 3.0.2 Multiple Vulnerabilities

F5 Device Default Support Password

OpenSSH < 3.0.1 Multiple Flaws

Solaris in.fingerd Unused Accounts Disclosure

OpenSSH 2.5.x - 2.9 Multiple Vulnerabilities

Alcatel ADSL Modem Unrestricted Remote Access

3Com Superstack 3 Switch Multiple Default Accounts

Cayman DSL Router Single Character String Authentication Bypass.

LDAP Server NULL Bind Connection Information Disclosure

LDAP NULL BASE Search Access

ZyXEL Router Default Telnet Password Present

SSH 3.0.0 Locked Account Remote Authentication Bypass

Netscape Messenging Server POP3 Error Message User Account Enumeration

cfingerd < 1.4.4 Multiple Vulnerabilities

cfingerd Version Detection

Kerberos Server Spoofed Packet Amplification DoS (PingPong)

OpenSSH 2.3.1 SSHv2 Public Key Authentication Bypass

SSH CRC-32 Compensation Attack Remote Overflow

RealServer /admin/includes/ Remote Memory Content Disclosure

FreeBSD 4.1.1 Finger Arbitrary Remote File Access

Alcatel ADSL Modem Unpassworded Access

Nortel Networks Router Unpassworded Account (User Level)

Nortel Networks Router Unpassworded Account (manager Level)

Axis Camera Default Password

Shiva Integrator Default Password

SSH with Kerberos NFS Share Ticket Disclosure

ipop2d fold Command Arbitrary File Access

OpenSSH < 2.1.1 UseLogin Local Privilege Escalation

NAI WebShield SMTP GET_CONFIG Information Disclosure

Qpopper EUIDL Arbitrary Command Execution

Standard & Poor's ComStock MultiCSP Detection

MERCUR Mailserver Local Traversal Arbitrary File Access

ACC Tigris Access Terminal Configuration Disclosure

Cayman DSL Router Unauthenticated Access

Pocsag POC32 Remote Service Default Password (password)

XtraMail Control Service Username Overflow

Systat Service Remote Information Disclosure

SSH RSAREF Library Multiple Functions Local Overflow

SSH CBC/CFB Data Stream Injection

Qpopper < 3.0.2 LIST Command Local Overflow

Qpopper PASS Command Remote Overflow

HP LaserJet Printer Unauthenticated Access

Multiple Unix Netstat Service Remote Information Disclosure

in.fingerd Pipe Input Arbitrary Command Execution

HP LaserJet Direct Print Filter Bypass

HP LaserJet LCD Display Modification

Finger Recursive Request Arbitrary Site Redirection

Finger [email protected] Unused Account Disclosure

Finger [email protected] Unused Account Disclosure

Finger Service Remote Information Disclosure

cfingerd Wildcard Argument Information Disclosure

Knox Arkeia Backup Service Buffer Overflow

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now